CVE-2012-3271
critical
CVSS v3
—
CVSS v2
9.3
VIR risk
9.3
Description
Unspecified vulnerability on the HP Integrated Lights-Out 3 (aka iLO3) with firmware before 1.50 and Integrated Lights-Out 4 (aka iLO4) with firmware before 1.13 allows remote attackers to obtain sensitive information via unknown vectors.
Predictions
Exploit likelihood
20%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Vendor advisory: hp-security-alert@hp.com — http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03515413
References
- http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03515413
- http://secunia.com/advisories/51378
- http://www.securityfocus.com/bid/56597
- http://www.securitytracker.com/id?1027790
- https://exchange.xforce.ibmcloud.com/vulnerabilities/80155
- http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03515413
- http://secunia.com/advisories/51378
- http://www.securityfocus.com/bid/56597
- http://www.securitytracker.com/id?1027790
- https://exchange.xforce.ibmcloud.com/vulnerabilities/80155
Verify integrity in audit chain (admin only). AS-IS.