CVE-2018-7093
HIGHHP Integrated Lights-out 3 Firmware < 1.90 - Denial of Service
Title source: ruleDescription
A security vulnerability in HPE Integrated Lights-Out 3 prior to v1.90, iLO 4 prior to v2.60, iLO 5 prior to v1.30, Moonshot Chassis Manager firmware prior to v1.58, and Moonshot Component Pack prior to v2.55 could be remotely exploited to create a denial of service.
References (2)
Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1041435
Vendor Advisory x_refsource_confirm
https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03835en_us
Scores
CVSS v3
8.6
EPSS
0.0117
EPSS Percentile
78.9%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
Details
Status
published
Products (5)
hp/integrated_lights-out_3_firmware
< 1.90
hp/integrated_lights-out_4_firmware
< 2.60
hp/integrated_lights-out_5_firmware
< 1.30
hp/moonshot_chassis_manager_firmware
< 1.58
hp/moonshot_component_pack_firmware
< 2.55
Published
Aug 14, 2018
Tracked Since
Feb 18, 2026