What is CVE-2022-23704?

CVE-2022-23704 is a high-severity vulnerability in Hp Integrated_lights-out_4. CVSS score: 7.5/10. Published 2022-05-09.

How severe is CVE-2022-23704?

High severity. CVSS v3 base score is 7.5 out of 10.

Vulnerability in Hp Integrated_lights-out_4

CVE-2022-23704

A potential security vulnerability has been identified in Integrated Lights-Out 4 (iLO 4). The vulnerability could allow remote Denial of Service. The vulnerability is resolved in Integrated Lights-Out 4 (iLO 4) 2.80 and later.

EPSS: 0.018 (75.3th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.5 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H.

Affected products

Hp Integrated_lights-out_4
Hpe Apollo_4200_gen9_server
Hpe Proliant_bl420c_gen8_server
Hpe Proliant_bl460c_gen8_server_blade
Hpe Proliant_bl460c_gen9_server_blade
Hpe Proliant_bl465c_gen8_server_blade
Hpe Proliant_bl660c_gen8_server_blade
Hpe Proliant_bl660c_gen9_server
Hpe Proliant_dl120_gen9_server
Hpe Proliant_dl160_gen8_server

References

security-alert@hpe.com (x_refsource_MISC, Vendor Advisory)

Frequently asked questions

What is CVE-2022-23704?: CVE-2022-23704 is a high-severity vulnerability in Hp Integrated_lights-out_4. CVSS score: 7.5/10. Published 2022-05-09.
How severe is CVE-2022-23704?: High severity. CVSS v3 base score is 7.5 out of 10.