Vulnerability Description
A potential security vulnerability has been identified in HPE Integrated Lights-Out 5 (iLO 5) and Integrated Lights-Out 6 (iLO 6). The vulnerability could be remotely exploited to allow authentication bypass.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Hpe | Integrated Lights-Out 5 Firmware | >= 2.63, <= 3.00 |
| Hpe | Integrated Lights-Out 5 | - |
| Hpe | Integrated Lights-Out 6 Firmware | >= 1.05, <= 1.55 |
| Hpe | Integrated Lights-Out 6 | - |
Related Weaknesses (CWE)
References
- https://support.hpe.com/hpesc/public/docDisplay?docLocale=en_US&docId=hpesbhf045Vendor Advisory
- https://support.hpe.com/hpesc/public/docDisplay?docLocale=en_US&docId=hpesbhf045Vendor Advisory
FAQ
What is CVE-2023-50272?
CVE-2023-50272 is a vulnerability with a CVSS score of 7.5 (HIGH). A potential security vulnerability has been identified in HPE Integrated Lights-Out 5 (iLO 5) and Integrated Lights-Out 6 (iLO 6). The vulnerability could be remotely exploited to allow authentication...
How severe is CVE-2023-50272?
CVE-2023-50272 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-50272?
Check the references section above for vendor advisories and patch information. Affected products include: Hpe Integrated Lights-Out 5 Firmware, Hpe Integrated Lights-Out 5, Hpe Integrated Lights-Out 6 Firmware, Hpe Integrated Lights-Out 6.