Vulnerability Description
A security vulnerability in HPE Integrated Lights-Out 3 prior to v1.90, iLO 4 prior to v2.60, iLO 5 prior to v1.30, Moonshot Chassis Manager firmware prior to v1.58, and Moonshot Component Pack prior to v2.55 could be remotely exploited to create a denial of service.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Hp | Integrated Lights-Out 3 Firmware | < 1.90 |
| Hp | Integrated Lights-Out 4 Firmware | < 2.60 |
| Hp | Integrated Lights-Out 5 Firmware | < 1.30 |
| Hp | Moonshot Chassis Manager Firmware | < 1.58 |
| Hp | Integrated Lights-Out | - |
| Hp | Moonshot Component Pack Firmware | < 2.55 |
| Hp | Moonshot Component Pack | - |
References
- http://www.securitytracker.com/id/1041435Third Party AdvisoryVDB Entry
- https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpeVendor Advisory
- http://www.securitytracker.com/id/1041435Third Party AdvisoryVDB Entry
- https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpeVendor Advisory
FAQ
What is CVE-2018-7093?
CVE-2018-7093 is a vulnerability with a CVSS score of 8.6 (HIGH). A security vulnerability in HPE Integrated Lights-Out 3 prior to v1.90, iLO 4 prior to v2.60, iLO 5 prior to v1.30, Moonshot Chassis Manager firmware prior to v1.58, and Moonshot Component Pack prior ...
How severe is CVE-2018-7093?
CVE-2018-7093 has been rated HIGH with a CVSS base score of 8.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2018-7093?
Check the references section above for vendor advisories and patch information. Affected products include: Hp Integrated Lights-Out 3 Firmware, Hp Integrated Lights-Out 4 Firmware, Hp Integrated Lights-Out 5 Firmware, Hp Moonshot Chassis Manager Firmware, Hp Integrated Lights-Out.