CVE-2017-8979
CRITICALHPE Integrated Lights-Out 2 Firmware - Authentication Bypass, Remote Code Execution, and Denial of Service
Title source: llmDescription
Security vulnerabilities in the HPE Integrated Lights-Out 2 (iLO 2) firmware could be exploited remotely to allow authentication bypass, code execution, and denial of service.
References (2)
Core 2
Core References
Vendor Advisory x_refsource_confirm
https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03797en_us
Vendor Advisory x_refsource_confirm
https://support.hpe.com/hpsc/doc/public/display?docId=hpesbhf03797en_us
Scores
CVSS v3
9.8
EPSS
0.0269
EPSS Percentile
86.1%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
Status
published
Products (1)
hp/integrated_lights-out_2_firmware
2.29
Published
Feb 15, 2018
Tracked Since
Feb 18, 2026