CVE-2020-7202
5.3
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Exploitability: 3.9 / Impact: 1.4
Source: NVD
Description
A potential security vulnerability has been identified in HPE Integrated Lights-Out 5 (iLO 5) and Integrated Lights-Out 4 (iLO 4) firmware. The vulnerability could be remotely exploited to disclose the serial number and other information.
Affected (2)
Products: Hp: Integrated Lights Out 4, Integrated Lights Out 5
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2.76 |
| Running on/with | Platform Versions |
|---|---|
Hp Apollo 4200 Gen9 Server | All versions |
Hp Proliant Bl420c Gen8 Server | All versions |
Hp Proliant Bl460c Gen8 Server Blade | All versions |
Hp Proliant Bl460c Gen9 Server Blade | All versions |
Hp Proliant Bl465c Gen8 Server Blade | All versions |
Hp Proliant Bl660c Gen8 Server Blade | All versions |
Hp Proliant Bl660c Gen9 Server | All versions |
Hp Proliant Dl120 Gen9 Server | All versions |
Hp Proliant Dl160 Gen8 Server | All versions |
Hp Proliant Dl160 Gen9 Server | All versions |
Hp Proliant Dl180 Gen9 Server | All versions |
Hp Proliant Dl320e Gen8 Server | All versions |
Hp Proliant Dl320e Gen8 V2 Server | All versions |
Hp Proliant Dl360 Gen9 Server | All versions |
Hp Proliant Dl360e Gen8 Server | All versions |
Hp Proliant Dl360p Gen8 Server | All versions |
Hp Proliant Dl380 Gen9 Server | All versions |
Hp Proliant Dl380e Gen8 Server | All versions |
Hp Proliant Dl380p Gen8 Server | All versions |
Hp Proliant Dl385p Gen8 (amd) | All versions |
Hp Proliant Dl560 Gen8 Server | All versions |
Hp Proliant Dl560 Gen9 Server | All versions |
Hp Proliant Dl580 Gen8 Server | All versions |
Hp Proliant Dl580 Gen9 Server | All versions |
Hp Proliant Dl60 Gen9 Server | All versions |
Hp Proliant Dl80 Gen9 Server | All versions |
Hp Proliant Microserver Gen8 | All versions |
Hp Proliant Ml110 Gen9 Server | All versions |
Hp Proliant Ml30 Gen9 Server | All versions |
Hp Proliant Ml310e Gen8 Server | All versions |
Hp Proliant Ml310e Gen8 V2 Server | All versions |
Hp Proliant Ml350 Gen9 Server | All versions |
Hp Proliant Ml350e Gen8 Server | All versions |
Hp Proliant Ml350e Gen8 V2 Server | All versions |
Hp Proliant Ml350p Gen8 Server | All versions |
Hp Proliant Sl210t Gen8 Server | All versions |
Hp Proliant Sl230s Gen8 Server | All versions |
Hp Proliant Sl250s Gen8 Server | All versions |
Hp Proliant Sl270s Gen8 Se Server | All versions |
Hp Proliant Sl270s Gen8 Server | All versions |
Hp Proliant Sl4540 Gen8 3 Node Server | All versions |
Hp Proliant Ws460c Gen8 Graphics Server Blade | All versions |
Hp Proliant Ws460c Gen9 Graphics Server Blade | All versions |
Hp Proliant Xl170r Gen9 Server | All versions |
Hp Proliant Xl190r Gen9 Server | All versions |
Hp Proliant Xl220a Gen8 V2 Server | All versions |
Hp Proliant Xl230a Gen9 Server | All versions |
Hp Proliant Xl250a Gen9 Server | All versions |
Hp Proliant Xl450 Gen9 Server | All versions |
Hp Proliant Xl730f Gen9 Server | All versions |
Hp Proliant Xl740f Gen9 Server | All versions |
Hp Proliant Xl750f Gen9 Server | All versions |
Hp Synergy 480 Gen9 Compute Module | All versions |
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2.31 |
| Running on/with | Platform Versions |
|---|---|
Hp Apollo 4200 Gen10 Server | All versions |
Hp Apollo 4510 System | All versions |
Hp Apollo R2000 Chassis | All versions |
Hp Convergedsystem Cs700 | All versions |
Hp Convergedsystem Cs700x | All versions |
Hp Proliant Bl460c Gen10 Server Blade | All versions |
Hp Proliant Dl120 Gen10 Server | All versions |
Hp Proliant Dl160 Gen10 Server | All versions |
Hp Proliant Dl180 Gen10 Server | All versions |
Hp Proliant Dl20 Gen10 Server | All versions |
Hp Proliant Dl325 Gen10 Plus Server | All versions |
Hp Proliant Dl325 Gen10 Server | All versions |
Hp Proliant Dl360 Gen10 Server | All versions |
Hp Proliant Dl380 Gen10 Server | All versions |
Hp Proliant Dl385 Gen10 Plus Server | All versions |
Hp Proliant Dl385 Gen10 Server | All versions |
Hp Proliant Dl560 Gen10 Server | All versions |
Hp Proliant Dl580 Gen10 Server | All versions |
Hp Proliant Ml110 Gen10 Server | All versions |
Hp Proliant Ml30 Gen10 Server | All versions |
Hp Proliant Ml350 Gen10 Server | All versions |
Hp Proliant Xl170r Gen10 Server | All versions |
Hp Proliant Xl190r Gen10 Server | All versions |
Hp Proliant Xl230k Gen10 Server | All versions |
Hp Proliant Xl270d Gen10 Server | All versions |
Hp Proliant Xl450 Gen10 Server | All versions |
Hp Synergy 480 Gen10 Compute Module | All versions |
Hp Synergy 660 Gen10 Compute Module | All versions |
References (2)
Source: security-alert@hpe.com
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Timeline
No history available yet.