5.3

CVE-2020-7202

A potential security vulnerability has been identified in HPE Integrated Lights-Out 5 (iLO 5) and Integrated Lights-Out 4 (iLO 4) firmware. The vulnerability could be remotely exploited to disclose the serial number and other information.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)
HpIntegrated Lights-out 4 Version < 2.76
   HpApollo 4200 Gen9 Server Version-
   HpConvergedsystem Cs700 Version-
   HpConvergedsystem Cs700x Version-
   HpProliant Bl420c Gen8 Server Version-
   HpProliant Bl460c Gen8 Server Blade Version-
   HpProliant Bl460c Gen9 Server Blade Version-
   HpProliant Bl465c Gen8 Server Blade Version-
   HpProliant Bl660c Gen8 Server Blade Version-
   HpProliant Bl660c Gen9 Server Version-
   HpProliant Dl120 Gen9 Server Version-
   HpProliant Dl160 Gen8 Server Version-
   HpProliant Dl160 Gen9 Server Version-
   HpProliant Dl180 Gen9 Server Version-
   HpProliant Dl320e Gen8 Server Version-
   HpProliant Dl320e Gen8 V2 Server Version-
   HpProliant Dl360 Gen9 Server Version-
   HpProliant Dl360e Gen8 Server Version-
   HpProliant Dl360p Gen8 Server Version-
   HpProliant Dl380 Gen9 Server Version-
   HpProliant Dl380e Gen8 Server Version-
   HpProliant Dl380p Gen8 Server Version-
   HpProliant Dl385p Gen8 (amd) Version-
   HpProliant Dl560 Gen8 Server Version-
   HpProliant Dl560 Gen9 Server Version-
   HpProliant Dl580 Gen8 Server Version-
   HpProliant Dl580 Gen9 Server Version-
   HpProliant Dl60 Gen9 Server Version-
   HpProliant Dl80 Gen9 Server Version-
   HpProliant Microserver Gen8 Version-
   HpProliant Ml110 Gen9 Server Version-
   HpProliant Ml30 Gen9 Server Version-
   HpProliant Ml310e Gen8 Server Version-
   HpProliant Ml310e Gen8 V2 Server Version-
   HpProliant Ml350 Gen9 Server Version-
   HpProliant Ml350e Gen8 Server Version-
   HpProliant Ml350e Gen8 V2 Server Version-
   HpProliant Ml350p Gen8 Server Version-
   HpProliant Sl210t Gen8 Server Version-
   HpProliant Sl230s Gen8 Server Version-
   HpProliant Sl250s Gen8 Server Version-
   HpProliant Sl270s Gen8 Se Server Version-
   HpProliant Sl270s Gen8 Server Version-
   HpProliant Sl4540 Gen8 3 Node Server Version-
   HpProliant Ws460c Gen8 Graphics Server Blade Version-
   HpProliant Ws460c Gen9 Graphics Server Blade Version-
   HpProliant Xl170r Gen9 Server Version-
   HpProliant Xl190r Gen9 Server Version-
   HpProliant Xl220a Gen8 V2 Server Version-
   HpProliant Xl230a Gen9 Server Version-
   HpProliant Xl250a Gen9 Server Version-
   HpProliant Xl450 Gen9 Server Version-
   HpProliant Xl730f Gen9 Server Version-
   HpProliant Xl740f Gen9 Server Version-
   HpProliant Xl750f Gen9 Server Version-
   HpSynergy 480 Gen9 Compute Module Version-
HpIntegrated Lights-out 5 Version < 2.31
   HpApollo 4200 Gen10 Server Version-
   HpApollo 4510 System Version-
   HpApollo R2000 Chassis Version-
   HpConvergedsystem Cs700 Version-
   HpConvergedsystem Cs700x Version-
   HpProliant Bl460c Gen10 Server Blade Version-
   HpProliant Dl120 Gen10 Server Version-
   HpProliant Dl160 Gen10 Server Version-
   HpProliant Dl180 Gen10 Server Version-
   HpProliant Dl20 Gen10 Server Version-
   HpProliant Dl325 Gen10 Plus Server Version-
   HpProliant Dl325 Gen10 Server Version-
   HpProliant Dl360 Gen10 Server Version-
   HpProliant Dl380 Gen10 Server Version-
   HpProliant Dl385 Gen10 Plus Server Version-
   HpProliant Dl385 Gen10 Server Version-
   HpProliant Dl560 Gen10 Server Version-
   HpProliant Dl580 Gen10 Server Version-
   HpProliant Ml110 Gen10 Server Version-
   HpProliant Ml30 Gen10 Server Version-
   HpProliant Ml350 Gen10 Server Version-
   HpProliant Xl170r Gen10 Server Version-
   HpProliant Xl190r Gen10 Server Version-
   HpProliant Xl230k Gen10 Server Version-
   HpProliant Xl270d Gen10 Server Version-
   HpProliant Xl450 Gen10 Server Version-
   HpSynergy 480 Gen10 Compute Module Version-
   HpSynergy 660 Gen10 Compute Module Version-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.26% 0.49
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.3 3.9 1.4
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:P/I:N/A:N