Vulnerability in Hp Integrated_lights-out_2_firmware
CVE-2014-2601
The server in HP Integrated Lights-Out 2 (aka iLO 2) 2.23 and earlier allows remote attackers to cause a denial of service via crafted HTTPS traffic, as demonstrated by traffic from a CVE-2014-0160 vulnerability-assessment tool.
EPSS: 0.040 (89.1th percentile) — read the EPSS interpretation.
Affected products
- Hp Integrated_lights-out_2_firmware — versions 1.00, 1.10, 1.20
- N/a — versions n/a
References
- hp-security-alert@hp.com (x_refsource_MISC)
- hp-security-alert@hp.com (Vendor Advisory, x_refsource_HP, vendor-advisory, Patch)
- hp-security-alert@hp.com (vdb-entry, x_refsource_SECTRACK)
- hp-security-alert@hp.com (x_refsource_CONFIRM)