Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2013-4805

Unspecified vulnerability in HP Integrated Lights-Out 3 (aka iLO3) firmware before 1.60 and 4 (aka iLO4) firmware before 1.30 allows remote attackers to bypass authentication via unknown vectors.

Published

2013-08-05T13:22:48.160

Last Modified

2025-04-11T00:51:21.963

Status

Deferred

Source

[email protected]

Severity

CVSSv2: 9.0 (HIGH)

CVSSv2 Vector

AV:N/AC:L/Au:N/C:P/I:P/A:C

  • Access Vector: NETWORK
  • Access Complexity: LOW
  • Authentication: NONE
  • Confidentiality Impact: PARTIAL
  • Integrity Impact: PARTIAL
  • Availability Impact: COMPLETE
Exploitability Score

10.0

Impact Score

8.5

Weaknesses
  • Type: Primary
    NVD-CWE-noinfo
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Operating System hp integrated_lights-out_firmware ≤ 1.51a Yes
Operating System hp integrated_lights-out_firmware 1.10 Yes
Operating System hp integrated_lights-out_firmware 1.15 Yes
Operating System hp integrated_lights-out_firmware 1.15a Yes
Operating System hp integrated_lights-out_firmware 1.16a Yes
Operating System hp integrated_lights-out_firmware 1.20a Yes
Operating System hp integrated_lights-out_firmware 1.26a Yes
Operating System hp integrated_lights-out_firmware 1.27a Yes
Operating System hp integrated_lights-out_firmware 1.40a Yes
Operating System hp integrated_lights-out_firmware 1.41a Yes
Operating System hp integrated_lights-out_firmware 1.42a Yes
Operating System hp integrated_lights-out_firmware 1.50 Yes
Operating System hp integrated_lights-out_firmware 1.50a Yes
References