PT-2018-17898 · Hewlett Packard · Moonshot Component Pack+5
Published
2018-08-07
·
Updated
2019-10-03
·
CVE-2018-7093
CVSS v3.1
8.6
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
HPE Integrated Lights-Out 3 versions prior to 1.90
HPE Integrated Lights-Out 4 versions prior to 2.60
HPE Integrated Lights-Out 5 versions prior to 1.30
Moonshot Chassis Manager firmware versions prior to 1.58
Moonshot Component Pack versions prior to 2.55
Description
A security issue in the mentioned HPE products could be remotely exploited to create a denial of service. This allows an attacker to disrupt the service, making it unavailable to users.
Recommendations
For HPE Integrated Lights-Out 3 versions prior to 1.90, update to version 1.90 or later.
For HPE Integrated Lights-Out 4 versions prior to 2.60, update to version 2.60 or later.
For HPE Integrated Lights-Out 5 versions prior to 1.30, update to version 1.30 or later.
For Moonshot Chassis Manager firmware versions prior to 1.58, update to version 1.58 or later.
For Moonshot Component Pack versions prior to 2.55, update to version 2.55 or later.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Hpe Integrated Lights-Out 3
Hpe Integrated Lights-Out 4
Hpe Integrated Lights-Out 5
Hpe Ilo
Moonshot Chassis Manager
Moonshot Component Pack