N/A

A local arbitrary code execution vulnerability was discovered in HPE Integrated Lights-Out 5 (iLO 5) firmware version(s): Prior to 2.71. An unprivileged user could locally exploit this vulnerability to execute arbitrary code resulting in a complete loss of confidentiality, integrity, and availability. HPE has provided a firmware update to resolve this vulnerability in HPE Integrated Lights-Out 5 (iLO 5).

N/A

N/A

Hewlett Packard Enterprise Integrated Lights-Out 5 安全漏洞

Hewlett Packard Enterprise Integrated Lights-Out 5（iLO 5）是美国慧与（Hewlett Packard Enterprise）的一套远程控制解决方案。该方案能够对服务器等IT资产进行远程监控和运维。 Hewlett Packard Enterprise Integrated Lights-Out 5 (iLO 5) firmware 2.71之前版本存在安全漏洞。攻击者利用该漏洞执行任意代码，从而导致系统完全丧失机密性、完整性和可用性。

N/A

N/A