CVE-2022-23704

Common vulnerabilities & exposures (CVE)

CVE database CVE database blogpost Release & EoL database

Published at: - 09-05-2022 11:15

Last modified: - 19-05-2022 04:50

Total changes: - 2

Description

A potential security vulnerability has been identified in Integrated Lights-Out 4 (iLO 4). The vulnerability could allow remote Denial of Service. The vulnerability is resolved in Integrated Lights-Out 4 (iLO 4) 2.80 and later.

Common Vulnerability Scoring System (CVSS)

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Low

Attack complexity

Network

Attack vector

High

Availability

None

Confidentiality

None

Integrity

None

Privileges required

Unchanged

Scope

None

User interaction

7.5

Base score

3.9

3.6

Exploitability score

Impact score

Verification logic

AND

vendor=hp AND product=integrated_lights-out_4 AND versionEndExcluding=2.80

vendor=hpe AND product=proliant_bl660c_gen9_server AND version=-

vendor=hpe AND product=proliant_bl460c_gen9_server_blade AND version=-

vendor=hpe AND product=proliant_dl580_gen9_server AND version=-

vendor=hpe AND product=proliant_dl560_gen9_server AND version=-

vendor=hpe AND product=proliant_dl380_gen9_server AND version=-

vendor=hpe AND product=proliant_dl360_gen9_server AND version=-

vendor=hpe AND product=proliant_dl180_gen9_server AND version=-

vendor=hpe AND product=proliant_dl160_gen9_server AND version=-

vendor=hpe AND product=proliant_dl120_gen9_server AND version=-

vendor=hpe AND product=proliant_dl80_gen9_server AND version=-

vendor=hpe AND product=proliant_dl60_gen9_server AND version=-

vendor=hpe AND product=proliant_ml110_gen9_server AND version=-

vendor=hpe AND product=proliant_ml150_gen9_server AND version=-

vendor=hpe AND product=proliant_ml350_gen9_server AND version=-

vendor=hpe AND product=proliant_xl170r_gen9_server AND version=-

vendor=hpe AND product=proliant_xl190r_gen9_server AND version=-

vendor=hpe AND product=proliant_xl230a_gen9_server AND version=-

vendor=hpe AND product=proliant_xl250a_gen9_server AND version=-

vendor=hpe AND product=proliant_xl450_gen9_server AND version=-

vendor=hpe AND product=proliant_xl730f_gen9_server AND version=-

vendor=hpe AND product=synergy_480_gen9_compute_module AND version=-

vendor=hpe AND product=synergy_620_gen9_compute_module AND version=-

vendor=hpe AND product=synergy_680_gen9_compute_module AND version=-

vendor=hpe AND product=proliant_ws460c_gen9_graphics_server_blade AND version=-

vendor=hpe AND product=proliant_dl360e_gen8_server AND version=-

vendor=hpe AND product=proliant_dl360p_gen8_server AND version=-

vendor=hpe AND product=proliant_dl380e_gen8_server AND version=-

vendor=hpe AND product=proliant_dl380p_gen8_server AND version=-

vendor=hpe AND product=proliant_dl160_gen8_server AND version=-

vendor=hpe AND product=apollo_4200_gen9_server AND version=-

vendor=hpe AND product=proliant_dl20_gen9_server AND version=-

vendor=hpe AND product=proliant_ml30_gen9_server AND version=-

vendor=hpe AND product=proliant_xl740f_gen9_server AND version=-

vendor=hpe AND product=proliant_xl750f_gen9_server AND version=-

vendor=hpe AND product=synergy_660_gen9_compute_module AND version=-

vendor=hpe AND product=proliant_ws460c_gen8_graphics_server_blade AND version=-

vendor=hpe AND product=proliant_microserver_gen8 AND version=-

vendor=hpe AND product=proliant_sl210t_gen8_server AND version=-

vendor=hpe AND product=proliant_sl230s_gen8_server AND version=-

vendor=hpe AND product=proliant_sl250s_gen8_server AND version=-

vendor=hpe AND product=proliant_sl270s_gen8_se_server AND version=-

vendor=hpe AND product=proliant_sl270s_gen8_server AND version=-

vendor=hpe AND product=proliant_sl4540_gen8_1_node_server AND version=-

vendor=hpe AND product=proliant_bl420c_gen8_server AND version=-

vendor=hpe AND product=proliant_bl460c_gen8_server_blade AND version=-

vendor=hpe AND product=proliant_bl465c_gen8_server_blade AND version=-

vendor=hpe AND product=proliant_bl660c_gen8_server_blade AND version=-

vendor=hpe AND product=proliant_dl320e_gen8_server AND version=-

vendor=hpe AND product=proliant_dl320e_gen8_v2_server AND version=-

vendor=hpe AND product=proliant_dl385p_gen8 AND version=-

vendor=hpe AND product=proliant_dl560_gen8_server AND version=-

vendor=hpe AND product=proliant_dl580_gen8_server AND version=-

vendor=hpe AND product=proliant_ml310e_gen8_server AND version=-

vendor=hpe AND product=proliant_ml310e_gen8_v2_server AND version=-

vendor=hpe AND product=proliant_ml350e_gen8_v2_server AND version=-

vendor=hpe AND product=proliant_ml350p_gen8_server AND version=-

vendor=hpe AND product=proliant_xl220a_gen8_v2_server AND version=-

vendor=hpe AND product=proliant_ec200a_server AND version=-

Reference

https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf04240en_us

Keywords

CVE-2022-23704

Common vulnerabilities & exposures (CVE)

Description

Common Vulnerability Scoring System (CVSS)

Verification logic

Reference

NVD

CVE-2022-23704

CVE

Common vulnerabilities & exposures

CVSS

Common vulnerability scoring system

Security

Vulnerabilities

Exposures