Multiple vulnerabilities in HPE Integrated Lights-Out 5 (iLO 5)
| Risk | Medium |
| Patch available | YES |
| Number of vulnerabilities | 4 |
| CVE-ID | CVE-2022-28637 CVE-2022-28638 CVE-2022-28639 CVE-2022-28640 |
| CWE-ID | CWE-20 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software |
HPE Integrated Lights-Out 5 (iLO 5) for HPE Gen10 Servers Hardware solutions / Firmware HPE Apollo 2000 Gen10 Plus System Hardware solutions / Firmware HPE Apollo 4200 Gen10 Plus System Hardware solutions / Firmware HPE Apollo 4200 Gen10 Server Hardware solutions / Firmware HPE Apollo 4500 System Hardware solutions / Firmware HPE Apollo 4510 Gen10 System Hardware solutions / Firmware HPE Apollo 6500 Gen10 Plus System Hardware solutions / Firmware HPE Apollo n2600 Gen10 Plus Hardware solutions / Firmware HPE Apollo n2800 Gen10 Plus Hardware solutions / Firmware HPE Apollo r2000 Chassis Hardware solutions / Firmware HPE Edgeline e920 Server Blade Hardware solutions / Firmware HPE Edgeline e920d Server Blade Hardware solutions / Firmware HPE Edgeline e920t Server Blade Hardware solutions / Firmware HPE ProLiant BL460c Gen10 Server Blade Hardware solutions / Firmware HPE ProLiant DL110 Gen10 Plus Telco server Hardware solutions / Firmware HPE ProLiant DL160 Gen10 Server Hardware solutions / Firmware HPE ProLiant DL180 Gen10 Server Hardware solutions / Firmware HPE ProLiant DL20 Gen10 Plus server Hardware solutions / Firmware HPE ProLiant DL20 Gen10 Server Hardware solutions / Firmware HPE ProLiant DL325 Gen10 Plus server Hardware solutions / Firmware HPE ProLiant DL325 Gen10 Plus v2 server Hardware solutions / Firmware HPE ProLiant DL325 Gen10 Server Hardware solutions / Firmware HPE ProLiant DL345 Gen10 Plus server Hardware solutions / Firmware HPE ProLiant DL360 Gen10 Plus server Hardware solutions / Firmware HPE ProLiant DL360 Gen10 Server Hardware solutions / Firmware HPE ProLiant DL365 Gen10 Plus server Hardware solutions / Firmware HPE ProLiant DL380 Gen10 Plus server Hardware solutions / Firmware HPE ProLiant DL380 Gen10 Server Hardware solutions / Firmware HPE ProLiant DL385 Gen10 Plus server Hardware solutions / Firmware HPE ProLiant DL385 Gen10 Plus v2 server Hardware solutions / Firmware HPE ProLiant DL385 Gen10 Server Hardware solutions / Firmware HPE ProLiant DL560 Gen10 Server Hardware solutions / Firmware HPE ProLiant DL580 Gen10 Server Hardware solutions / Firmware HPE ProLiant DX170r Gen10 server Hardware solutions / Firmware HPE ProLiant DX190r Gen10 server Hardware solutions / Firmware HPE ProLiant DX220n Gen10 Plus server Hardware solutions / Firmware HPE ProLiant DX325 Gen10 Plus v2 server Hardware solutions / Firmware HPE ProLiant DX360 Gen10 Plus server Hardware solutions / Firmware HPE ProLiant DX360 Gen10 server Hardware solutions / Firmware HPE ProLiant DX380 Gen10 Plus server Hardware solutions / Firmware HPE ProLiant DX380 Gen10 server Hardware solutions / Firmware HPE ProLiant DX385 Gen10 Plus server Hardware solutions / Firmware HPE ProLiant DX385 Gen10 Plus v2 server Hardware solutions / Firmware HPE ProLiant DX560 Gen10 server Hardware solutions / Firmware HPE ProLiant DX4200 Gen10 server Hardware solutions / Firmware HPE ProLiant e910 Server Blade Hardware solutions / Firmware HPE ProLiant e910t Server Blade Hardware solutions / Firmware HPE ProLiant m750 Server Blade Hardware solutions / Firmware HPE ProLiant MicroServer Gen10 Plus Hardware solutions / Firmware HPE ProLiant ML30 Gen10 Plus server Hardware solutions / Firmware HPE ProLiant ML30 Gen10 Server Hardware solutions / Firmware HPE ProLiant ML110 Gen10 Server Hardware solutions / Firmware HPE ProLiant ML350 Gen10 Server Hardware solutions / Firmware HPE ProLiant XL170r Gen10 Server Hardware solutions / Firmware HPE ProLiant XL190r Gen10 Server Hardware solutions / Firmware HPE ProLiant XL220n Gen10 Plus Server Hardware solutions / Firmware HPE ProLiant XL225n Gen10 Plus 1U Node Hardware solutions / Firmware HPE ProLiant XL230k Gen10 Server Hardware solutions / Firmware HPE ProLiant XL270d Gen10 Server Hardware solutions / Firmware HPE ProLiant XL290n Gen10 Plus Server Hardware solutions / Firmware HPE ProLiant XL450 Gen10 Server Hardware solutions / Firmware HPE ProLiant XL645d Gen10 Plus Server Hardware solutions / Firmware HPE ProLiant XL675d Gen10 Plus Server Hardware solutions / Firmware HPE ProLiant XL925g Gen10 Plus 1U 4-node Configure-to-order Server Hardware solutions / Firmware HPE Storage File Controller Hardware solutions / Firmware HPE Storage Performance File Controller Hardware solutions / Firmware HPE StoreEasy 1460 Storage Hardware solutions / Firmware HPE StoreEasy 1560 Storage Hardware solutions / Firmware HPE StoreEasy 1660 Expanded Storage Hardware solutions / Firmware HPE StoreEasy 1660 Performance Storage Hardware solutions / Firmware HPE StoreEasy 1660 Storage Hardware solutions / Firmware HPE StoreEasy 1860 Performance Storage Hardware solutions / Firmware HPE StoreEasy 1860 Storage Hardware solutions / Firmware |
| Vendor | HPE |
Security Bulletin
This security bulletin contains information about 4 vulnerabilities.
1) Input validation error
EUVDB-ID: #VU67481
Risk: Low
CVSSv3.1: 7.1 [CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2022-28637
CWE-ID:
CWE-20 - Improper input validation
Exploit availability: No
DescriptionThe vulnerability allows a local user to execute arbitrary code on the system.
The vulnerability exists due to insufficient validation of user-supplied input in HPE Integrated Lights-Out 5 (iLO 5) firmware. A local administrator can pass specially crafted input to the application and execute arbitrary code on the target system.
MitigationInstall updates from vendor's website.
Vulnerable software versionsHPE Integrated Lights-Out 5 (iLO 5) for HPE Gen10 Servers: before 2.72
HPE Apollo 2000 Gen10 Plus System: before 2.72
HPE Apollo 4200 Gen10 Plus System: before 2.72
HPE Apollo 4200 Gen10 Server: before 2.72
HPE Apollo 4500 System: before 2.72
HPE Apollo 4510 Gen10 System: before 2.72
HPE Apollo 6500 Gen10 Plus System: before 2.72
HPE Apollo n2600 Gen10 Plus: before 2.72
HPE Apollo n2800 Gen10 Plus: before 2.72
HPE Apollo r2000 Chassis: before 2.72
HPE Edgeline e920 Server Blade: before 2.72
HPE Edgeline e920d Server Blade: before 2.72
HPE Edgeline e920t Server Blade: before 2.72
HPE ProLiant BL460c Gen10 Server Blade: before 2.72
HPE ProLiant DL110 Gen10 Plus Telco server: before 2.72
HPE ProLiant DL160 Gen10 Server: before 2.72
HPE ProLiant DL180 Gen10 Server: before 2.72
HPE ProLiant DL20 Gen10 Plus server: before 2.72
HPE ProLiant DL20 Gen10 Server: before 2.72
HPE ProLiant DL325 Gen10 Plus server: before 2.72
HPE ProLiant DL325 Gen10 Plus v2 server: before 2.72
HPE ProLiant DL325 Gen10 Server: before 2.72
HPE ProLiant DL345 Gen10 Plus server: before 2.72
HPE ProLiant DL360 Gen10 Plus server: before 2.72
HPE ProLiant DL360 Gen10 Server: before 2.72
HPE ProLiant DL365 Gen10 Plus server: before 2.72
HPE ProLiant DL380 Gen10 Plus server: before 2.72
HPE ProLiant DL380 Gen10 Server: before 2.72
HPE ProLiant DL385 Gen10 Plus server: before 2.72
HPE ProLiant DL385 Gen10 Plus v2 server: before 2.72
HPE ProLiant DL385 Gen10 Server: before 2.72
HPE ProLiant DL560 Gen10 Server: before 2.72
HPE ProLiant DL580 Gen10 Server: before 2.72
HPE ProLiant DX170r Gen10 server: before 2.72
HPE ProLiant DX190r Gen10 server: before 2.72
HPE ProLiant DX220n Gen10 Plus server: before 2.72
HPE ProLiant DX325 Gen10 Plus v2 server: before 2.72
HPE ProLiant DX360 Gen10 Plus server: before 2.72
HPE ProLiant DX360 Gen10 server: before 2.72
HPE ProLiant DX380 Gen10 Plus server: before 2.72
HPE ProLiant DX380 Gen10 server: before 2.72
HPE ProLiant DX385 Gen10 Plus server: before 2.72
HPE ProLiant DX385 Gen10 Plus v2 server: before 2.72
HPE ProLiant DX560 Gen10 server: before 2.72
HPE ProLiant DX4200 Gen10 server: before 2.72
HPE ProLiant e910 Server Blade: before 2.72
HPE ProLiant e910t Server Blade: before 2.72
HPE ProLiant m750 Server Blade: before 2.72
HPE ProLiant MicroServer Gen10 Plus: before 2.72
HPE ProLiant ML30 Gen10 Plus server: before 2.72
HPE ProLiant ML30 Gen10 Server: before 2.72
HPE ProLiant ML110 Gen10 Server: before 2.72
HPE ProLiant ML350 Gen10 Server: before 2.72
HPE ProLiant XL170r Gen10 Server: before 2.72
HPE ProLiant XL190r Gen10 Server: before 2.72
HPE ProLiant XL220n Gen10 Plus Server: before 2.72
HPE ProLiant XL225n Gen10 Plus 1U Node: before 2.72
HPE ProLiant XL230k Gen10 Server: before 2.72
HPE ProLiant XL270d Gen10 Server: before 2.72
HPE ProLiant XL290n Gen10 Plus Server: before 2.72
HPE ProLiant XL450 Gen10 Server: before 2.72
HPE ProLiant XL645d Gen10 Plus Server: before 2.72
HPE ProLiant XL675d Gen10 Plus Server: before 2.72
HPE ProLiant XL925g Gen10 Plus 1U 4-node Configure-to-order Server: before 2.72
HPE Storage File Controller: before 2.72
HPE Storage Performance File Controller: before 2.72
HPE StoreEasy 1460 Storage: before 2.72
HPE StoreEasy 1560 Storage: before 2.72
HPE StoreEasy 1660 Expanded Storage: before 2.72
HPE StoreEasy 1660 Performance Storage: before 2.72
HPE StoreEasy 1660 Storage: before 2.72
HPE StoreEasy 1860 Performance Storage: before 2.72
HPE StoreEasy 1860 Storage: before 2.72
CPE2.3- cpe:2.3:h:hpe:hpe_integrated_lights-out_5_ilo_5_for_hpe_gen10_servers:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_apollo_2000_gen10_plus_system:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_apollo_4200_gen10_plus_system:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_apollo_4200_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_apollo_4500_system:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_apollo_4510_gen10_system:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_apollo_6500_gen10_plus_system:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_apollo_n2600_gen10_plus:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_apollo_n2800_gen10_plus:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_apollo_r2000_chassis:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_edgeline_e920_server_blade:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_edgeline_e920d_server_blade:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_edgeline_e920t_server_blade:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_bl460c_gen10_server_blade:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl110_gen10_plus_telco_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl160_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl180_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl20_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl20_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl325_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl325_gen10_plus_v2_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl325_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl345_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl360_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl360_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl365_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl380_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl380_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl385_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl385_gen10_plus_v2_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl385_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl560_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl580_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dx170r_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dx190r_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dx220n_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dx325_gen10_plus_v2_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dx360_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dx360_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dx380_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dx380_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dx385_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dx385_gen10_plus_v2_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dx560_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dx4200_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_e910_server_blade:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_e910t_server_blade:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_m750_server_blade:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_microserver_gen10_plus:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_ml30_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_ml30_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_ml110_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_ml350_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_xl170r_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_xl190r_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_xl220n_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_xl225n_gen10_plus_1u_node:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_xl230k_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_xl270d_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_xl290n_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_xl450_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_xl645d_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_xl675d_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_xl925g_gen10_plus_1u_4-node_configure-to-order_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_storage_file_controller:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_storage_performance_file_controller:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_storeeasy_1460_storage:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_storeeasy_1560_storage:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_storeeasy_1660_expanded_storage:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_storeeasy_1660_performance_storage:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_storeeasy_1660_storage:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_storeeasy_1860_performance_storage:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_storeeasy_1860_storage:*:*:*:*:*:*:*:
http://support.hpe.com/hpesc/public/docDisplay?docLocale=en_US&docId=hpesbhf04365en_us
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
2) Input validation error
EUVDB-ID: #VU67482
Risk: Low
CVSSv3.1: 6.5 [CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2022-28638
CWE-ID:
CWE-20 - Improper input validation
Exploit availability: No
DescriptionThe vulnerability allows a local user to execute arbitrary code on the system.
The vulnerability exists due to insufficient validation of user-supplied input in HPE Integrated Lights-Out 5 (iLO 5) firmware. A local administrator can pass specially crafted input to the application and gain access to sensitive information, leading to arbitrary code execution.
MitigationInstall updates from vendor's website.
Vulnerable software versionsHPE Integrated Lights-Out 5 (iLO 5) for HPE Gen10 Servers: before 2.72
HPE Apollo 2000 Gen10 Plus System: before 2.72
HPE Apollo 4200 Gen10 Plus System: before 2.72
HPE Apollo 4200 Gen10 Server: before 2.72
HPE Apollo 4500 System: before 2.72
HPE Apollo 4510 Gen10 System: before 2.72
HPE Apollo 6500 Gen10 Plus System: before 2.72
HPE Apollo n2600 Gen10 Plus: before 2.72
HPE Apollo n2800 Gen10 Plus: before 2.72
HPE Apollo r2000 Chassis: before 2.72
HPE Edgeline e920 Server Blade: before 2.72
HPE Edgeline e920d Server Blade: before 2.72
HPE Edgeline e920t Server Blade: before 2.72
HPE ProLiant BL460c Gen10 Server Blade: before 2.72
HPE ProLiant DL110 Gen10 Plus Telco server: before 2.72
HPE ProLiant DL160 Gen10 Server: before 2.72
HPE ProLiant DL180 Gen10 Server: before 2.72
HPE ProLiant DL20 Gen10 Plus server: before 2.72
HPE ProLiant DL20 Gen10 Server: before 2.72
HPE ProLiant DL325 Gen10 Plus server: before 2.72
HPE ProLiant DL325 Gen10 Plus v2 server: before 2.72
HPE ProLiant DL325 Gen10 Server: before 2.72
HPE ProLiant DL345 Gen10 Plus server: before 2.72
HPE ProLiant DL360 Gen10 Plus server: before 2.72
HPE ProLiant DL360 Gen10 Server: before 2.72
HPE ProLiant DL365 Gen10 Plus server: before 2.72
HPE ProLiant DL380 Gen10 Plus server: before 2.72
HPE ProLiant DL380 Gen10 Server: before 2.72
HPE ProLiant DL385 Gen10 Plus server: before 2.72
HPE ProLiant DL385 Gen10 Plus v2 server: before 2.72
HPE ProLiant DL385 Gen10 Server: before 2.72
HPE ProLiant DL560 Gen10 Server: before 2.72
HPE ProLiant DL580 Gen10 Server: before 2.72
HPE ProLiant DX170r Gen10 server: before 2.72
HPE ProLiant DX190r Gen10 server: before 2.72
HPE ProLiant DX220n Gen10 Plus server: before 2.72
HPE ProLiant DX325 Gen10 Plus v2 server: before 2.72
HPE ProLiant DX360 Gen10 Plus server: before 2.72
HPE ProLiant DX360 Gen10 server: before 2.72
HPE ProLiant DX380 Gen10 Plus server: before 2.72
HPE ProLiant DX380 Gen10 server: before 2.72
HPE ProLiant DX385 Gen10 Plus server: before 2.72
HPE ProLiant DX385 Gen10 Plus v2 server: before 2.72
HPE ProLiant DX560 Gen10 server: before 2.72
HPE ProLiant DX4200 Gen10 server: before 2.72
HPE ProLiant e910 Server Blade: before 2.72
HPE ProLiant e910t Server Blade: before 2.72
HPE ProLiant m750 Server Blade: before 2.72
HPE ProLiant MicroServer Gen10 Plus: before 2.72
HPE ProLiant ML30 Gen10 Plus server: before 2.72
HPE ProLiant ML30 Gen10 Server: before 2.72
HPE ProLiant ML110 Gen10 Server: before 2.72
HPE ProLiant ML350 Gen10 Server: before 2.72
HPE ProLiant XL170r Gen10 Server: before 2.72
HPE ProLiant XL190r Gen10 Server: before 2.72
HPE ProLiant XL220n Gen10 Plus Server: before 2.72
HPE ProLiant XL225n Gen10 Plus 1U Node: before 2.72
HPE ProLiant XL230k Gen10 Server: before 2.72
HPE ProLiant XL270d Gen10 Server: before 2.72
HPE ProLiant XL290n Gen10 Plus Server: before 2.72
HPE ProLiant XL450 Gen10 Server: before 2.72
HPE ProLiant XL645d Gen10 Plus Server: before 2.72
HPE ProLiant XL675d Gen10 Plus Server: before 2.72
HPE ProLiant XL925g Gen10 Plus 1U 4-node Configure-to-order Server: before 2.72
HPE Storage File Controller: before 2.72
HPE Storage Performance File Controller: before 2.72
HPE StoreEasy 1460 Storage: before 2.72
HPE StoreEasy 1560 Storage: before 2.72
HPE StoreEasy 1660 Expanded Storage: before 2.72
HPE StoreEasy 1660 Performance Storage: before 2.72
HPE StoreEasy 1660 Storage: before 2.72
HPE StoreEasy 1860 Performance Storage: before 2.72
HPE StoreEasy 1860 Storage: before 2.72
CPE2.3- cpe:2.3:h:hpe:hpe_integrated_lights-out_5_ilo_5_for_hpe_gen10_servers:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_apollo_2000_gen10_plus_system:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_apollo_4200_gen10_plus_system:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_apollo_4200_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_apollo_4500_system:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_apollo_4510_gen10_system:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_apollo_6500_gen10_plus_system:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_apollo_n2600_gen10_plus:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_apollo_n2800_gen10_plus:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_apollo_r2000_chassis:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_edgeline_e920_server_blade:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_edgeline_e920d_server_blade:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_edgeline_e920t_server_blade:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_bl460c_gen10_server_blade:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl110_gen10_plus_telco_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl160_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl180_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl20_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl20_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl325_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl325_gen10_plus_v2_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl325_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl345_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl360_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl360_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl365_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl380_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl380_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl385_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl385_gen10_plus_v2_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl385_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl560_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl580_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dx170r_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dx190r_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dx220n_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dx325_gen10_plus_v2_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dx360_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dx360_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dx380_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dx380_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dx385_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dx385_gen10_plus_v2_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dx560_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dx4200_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_e910_server_blade:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_e910t_server_blade:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_m750_server_blade:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_microserver_gen10_plus:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_ml30_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_ml30_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_ml110_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_ml350_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_xl170r_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_xl190r_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_xl220n_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_xl225n_gen10_plus_1u_node:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_xl230k_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_xl270d_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_xl290n_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_xl450_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_xl645d_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_xl675d_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_xl925g_gen10_plus_1u_4-node_configure-to-order_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_storage_file_controller:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_storage_performance_file_controller:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_storeeasy_1460_storage:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_storeeasy_1560_storage:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_storeeasy_1660_expanded_storage:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_storeeasy_1660_performance_storage:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_storeeasy_1660_storage:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_storeeasy_1860_performance_storage:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_storeeasy_1860_storage:*:*:*:*:*:*:*:
http://support.hpe.com/hpesc/public/docDisplay?docLocale=en_US&docId=hpesbhf04365en_us
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
3) Input validation error
EUVDB-ID: #VU67483
Risk: Medium
CVSSv3.1: 7.8 [CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2022-28639
CWE-ID:
CWE-20 - Improper input validation
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the system.
The vulnerability exists due to insufficient validation of user-supplied input in HPE Integrated Lights-Out 5 (iLO 5) firmware. A remote attacker on the local network can pass specially crafted input to the application and execute arbitrary code on the system.
MitigationInstall updates from vendor's website.
Vulnerable software versionsHPE Integrated Lights-Out 5 (iLO 5) for HPE Gen10 Servers: before 2.72
HPE Apollo 2000 Gen10 Plus System: before 2.72
HPE Apollo 4200 Gen10 Plus System: before 2.72
HPE Apollo 4200 Gen10 Server: before 2.72
HPE Apollo 4500 System: before 2.72
HPE Apollo 4510 Gen10 System: before 2.72
HPE Apollo 6500 Gen10 Plus System: before 2.72
HPE Apollo n2600 Gen10 Plus: before 2.72
HPE Apollo n2800 Gen10 Plus: before 2.72
HPE Apollo r2000 Chassis: before 2.72
HPE Edgeline e920 Server Blade: before 2.72
HPE Edgeline e920d Server Blade: before 2.72
HPE Edgeline e920t Server Blade: before 2.72
HPE ProLiant BL460c Gen10 Server Blade: before 2.72
HPE ProLiant DL110 Gen10 Plus Telco server: before 2.72
HPE ProLiant DL160 Gen10 Server: before 2.72
HPE ProLiant DL180 Gen10 Server: before 2.72
HPE ProLiant DL20 Gen10 Plus server: before 2.72
HPE ProLiant DL20 Gen10 Server: before 2.72
HPE ProLiant DL325 Gen10 Plus server: before 2.72
HPE ProLiant DL325 Gen10 Plus v2 server: before 2.72
HPE ProLiant DL325 Gen10 Server: before 2.72
HPE ProLiant DL345 Gen10 Plus server: before 2.72
HPE ProLiant DL360 Gen10 Plus server: before 2.72
HPE ProLiant DL360 Gen10 Server: before 2.72
HPE ProLiant DL365 Gen10 Plus server: before 2.72
HPE ProLiant DL380 Gen10 Plus server: before 2.72
HPE ProLiant DL380 Gen10 Server: before 2.72
HPE ProLiant DL385 Gen10 Plus server: before 2.72
HPE ProLiant DL385 Gen10 Plus v2 server: before 2.72
HPE ProLiant DL385 Gen10 Server: before 2.72
HPE ProLiant DL560 Gen10 Server: before 2.72
HPE ProLiant DL580 Gen10 Server: before 2.72
HPE ProLiant DX170r Gen10 server: before 2.72
HPE ProLiant DX190r Gen10 server: before 2.72
HPE ProLiant DX220n Gen10 Plus server: before 2.72
HPE ProLiant DX325 Gen10 Plus v2 server: before 2.72
HPE ProLiant DX360 Gen10 Plus server: before 2.72
HPE ProLiant DX360 Gen10 server: before 2.72
HPE ProLiant DX380 Gen10 Plus server: before 2.72
HPE ProLiant DX380 Gen10 server: before 2.72
HPE ProLiant DX385 Gen10 Plus server: before 2.72
HPE ProLiant DX385 Gen10 Plus v2 server: before 2.72
HPE ProLiant DX560 Gen10 server: before 2.72
HPE ProLiant DX4200 Gen10 server: before 2.72
HPE ProLiant e910 Server Blade: before 2.72
HPE ProLiant e910t Server Blade: before 2.72
HPE ProLiant m750 Server Blade: before 2.72
HPE ProLiant MicroServer Gen10 Plus: before 2.72
HPE ProLiant ML30 Gen10 Plus server: before 2.72
HPE ProLiant ML30 Gen10 Server: before 2.72
HPE ProLiant ML110 Gen10 Server: before 2.72
HPE ProLiant ML350 Gen10 Server: before 2.72
HPE ProLiant XL170r Gen10 Server: before 2.72
HPE ProLiant XL190r Gen10 Server: before 2.72
HPE ProLiant XL220n Gen10 Plus Server: before 2.72
HPE ProLiant XL225n Gen10 Plus 1U Node: before 2.72
HPE ProLiant XL230k Gen10 Server: before 2.72
HPE ProLiant XL270d Gen10 Server: before 2.72
HPE ProLiant XL290n Gen10 Plus Server: before 2.72
HPE ProLiant XL450 Gen10 Server: before 2.72
HPE ProLiant XL645d Gen10 Plus Server: before 2.72
HPE ProLiant XL675d Gen10 Plus Server: before 2.72
HPE ProLiant XL925g Gen10 Plus 1U 4-node Configure-to-order Server: before 2.72
HPE Storage File Controller: before 2.72
HPE Storage Performance File Controller: before 2.72
HPE StoreEasy 1460 Storage: before 2.72
HPE StoreEasy 1560 Storage: before 2.72
HPE StoreEasy 1660 Expanded Storage: before 2.72
HPE StoreEasy 1660 Performance Storage: before 2.72
HPE StoreEasy 1660 Storage: before 2.72
HPE StoreEasy 1860 Performance Storage: before 2.72
HPE StoreEasy 1860 Storage: before 2.72
CPE2.3- cpe:2.3:h:hpe:hpe_integrated_lights-out_5_ilo_5_for_hpe_gen10_servers:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_apollo_2000_gen10_plus_system:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_apollo_4200_gen10_plus_system:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_apollo_4200_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_apollo_4500_system:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_apollo_4510_gen10_system:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_apollo_6500_gen10_plus_system:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_apollo_n2600_gen10_plus:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_apollo_n2800_gen10_plus:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_apollo_r2000_chassis:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_edgeline_e920_server_blade:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_edgeline_e920d_server_blade:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_edgeline_e920t_server_blade:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_bl460c_gen10_server_blade:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl110_gen10_plus_telco_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl160_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl180_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl20_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl20_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl325_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl325_gen10_plus_v2_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl325_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl345_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl360_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl360_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl365_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl380_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl380_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl385_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl385_gen10_plus_v2_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl385_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl560_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl580_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dx170r_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dx190r_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dx220n_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dx325_gen10_plus_v2_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dx360_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dx360_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dx380_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dx380_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dx385_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dx385_gen10_plus_v2_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dx560_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dx4200_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_e910_server_blade:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_e910t_server_blade:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_m750_server_blade:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_microserver_gen10_plus:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_ml30_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_ml30_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_ml110_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_ml350_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_xl170r_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_xl190r_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_xl220n_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_xl225n_gen10_plus_1u_node:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_xl230k_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_xl270d_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_xl290n_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_xl450_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_xl645d_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_xl675d_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_xl925g_gen10_plus_1u_4-node_configure-to-order_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_storage_file_controller:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_storage_performance_file_controller:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_storeeasy_1460_storage:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_storeeasy_1560_storage:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_storeeasy_1660_expanded_storage:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_storeeasy_1660_performance_storage:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_storeeasy_1660_storage:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_storeeasy_1860_performance_storage:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_storeeasy_1860_storage:*:*:*:*:*:*:*:
http://support.hpe.com/hpesc/public/docDisplay?docLocale=en_US&docId=hpesbhf04365en_us
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
4) Input validation error
EUVDB-ID: #VU67484
Risk: Low
CVSSv3.1: 7.5 [CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2022-28640
CWE-ID:
CWE-20 - Improper input validation
Exploit availability: No
DescriptionThe vulnerability allows a local attacker to execute arbitrary code on the system.
The vulnerability exists due to insufficient validation of user-supplied input in HPE Integrated Lights-Out 5 (iLO 5) firmware. A local attacker can pass specially crafted input to the application and execute arbitrary code on the target system.
MitigationInstall updates from vendor's website.
Vulnerable software versionsHPE Integrated Lights-Out 5 (iLO 5) for HPE Gen10 Servers: before 2.72
HPE Apollo 2000 Gen10 Plus System: before 2.72
HPE Apollo 4200 Gen10 Plus System: before 2.72
HPE Apollo 4200 Gen10 Server: before 2.72
HPE Apollo 4500 System: before 2.72
HPE Apollo 4510 Gen10 System: before 2.72
HPE Apollo 6500 Gen10 Plus System: before 2.72
HPE Apollo n2600 Gen10 Plus: before 2.72
HPE Apollo n2800 Gen10 Plus: before 2.72
HPE Apollo r2000 Chassis: before 2.72
HPE Edgeline e920 Server Blade: before 2.72
HPE Edgeline e920d Server Blade: before 2.72
HPE Edgeline e920t Server Blade: before 2.72
HPE ProLiant BL460c Gen10 Server Blade: before 2.72
HPE ProLiant DL110 Gen10 Plus Telco server: before 2.72
HPE ProLiant DL160 Gen10 Server: before 2.72
HPE ProLiant DL180 Gen10 Server: before 2.72
HPE ProLiant DL20 Gen10 Plus server: before 2.72
HPE ProLiant DL20 Gen10 Server: before 2.72
HPE ProLiant DL325 Gen10 Plus server: before 2.72
HPE ProLiant DL325 Gen10 Plus v2 server: before 2.72
HPE ProLiant DL325 Gen10 Server: before 2.72
HPE ProLiant DL345 Gen10 Plus server: before 2.72
HPE ProLiant DL360 Gen10 Plus server: before 2.72
HPE ProLiant DL360 Gen10 Server: before 2.72
HPE ProLiant DL365 Gen10 Plus server: before 2.72
HPE ProLiant DL380 Gen10 Plus server: before 2.72
HPE ProLiant DL380 Gen10 Server: before 2.72
HPE ProLiant DL385 Gen10 Plus server: before 2.72
HPE ProLiant DL385 Gen10 Plus v2 server: before 2.72
HPE ProLiant DL385 Gen10 Server: before 2.72
HPE ProLiant DL560 Gen10 Server: before 2.72
HPE ProLiant DL580 Gen10 Server: before 2.72
HPE ProLiant DX170r Gen10 server: before 2.72
HPE ProLiant DX190r Gen10 server: before 2.72
HPE ProLiant DX220n Gen10 Plus server: before 2.72
HPE ProLiant DX325 Gen10 Plus v2 server: before 2.72
HPE ProLiant DX360 Gen10 Plus server: before 2.72
HPE ProLiant DX360 Gen10 server: before 2.72
HPE ProLiant DX380 Gen10 Plus server: before 2.72
HPE ProLiant DX380 Gen10 server: before 2.72
HPE ProLiant DX385 Gen10 Plus server: before 2.72
HPE ProLiant DX385 Gen10 Plus v2 server: before 2.72
HPE ProLiant DX560 Gen10 server: before 2.72
HPE ProLiant DX4200 Gen10 server: before 2.72
HPE ProLiant e910 Server Blade: before 2.72
HPE ProLiant e910t Server Blade: before 2.72
HPE ProLiant m750 Server Blade: before 2.72
HPE ProLiant MicroServer Gen10 Plus: before 2.72
HPE ProLiant ML30 Gen10 Plus server: before 2.72
HPE ProLiant ML30 Gen10 Server: before 2.72
HPE ProLiant ML110 Gen10 Server: before 2.72
HPE ProLiant ML350 Gen10 Server: before 2.72
HPE ProLiant XL170r Gen10 Server: before 2.72
HPE ProLiant XL190r Gen10 Server: before 2.72
HPE ProLiant XL220n Gen10 Plus Server: before 2.72
HPE ProLiant XL225n Gen10 Plus 1U Node: before 2.72
HPE ProLiant XL230k Gen10 Server: before 2.72
HPE ProLiant XL270d Gen10 Server: before 2.72
HPE ProLiant XL290n Gen10 Plus Server: before 2.72
HPE ProLiant XL450 Gen10 Server: before 2.72
HPE ProLiant XL645d Gen10 Plus Server: before 2.72
HPE ProLiant XL675d Gen10 Plus Server: before 2.72
HPE ProLiant XL925g Gen10 Plus 1U 4-node Configure-to-order Server: before 2.72
HPE Storage File Controller: before 2.72
HPE Storage Performance File Controller: before 2.72
HPE StoreEasy 1460 Storage: before 2.72
HPE StoreEasy 1560 Storage: before 2.72
HPE StoreEasy 1660 Expanded Storage: before 2.72
HPE StoreEasy 1660 Performance Storage: before 2.72
HPE StoreEasy 1660 Storage: before 2.72
HPE StoreEasy 1860 Performance Storage: before 2.72
HPE StoreEasy 1860 Storage: before 2.72
CPE2.3- cpe:2.3:h:hpe:hpe_integrated_lights-out_5_ilo_5_for_hpe_gen10_servers:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_apollo_2000_gen10_plus_system:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_apollo_4200_gen10_plus_system:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_apollo_4200_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_apollo_4500_system:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_apollo_4510_gen10_system:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_apollo_6500_gen10_plus_system:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_apollo_n2600_gen10_plus:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_apollo_n2800_gen10_plus:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_apollo_r2000_chassis:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_edgeline_e920_server_blade:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_edgeline_e920d_server_blade:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_edgeline_e920t_server_blade:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_bl460c_gen10_server_blade:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl110_gen10_plus_telco_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl160_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl180_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl20_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl20_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl325_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl325_gen10_plus_v2_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl325_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl345_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl360_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl360_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl365_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl380_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl380_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl385_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl385_gen10_plus_v2_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl385_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl560_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dl580_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dx170r_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dx190r_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dx220n_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dx325_gen10_plus_v2_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dx360_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dx360_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dx380_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dx380_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dx385_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dx385_gen10_plus_v2_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dx560_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_dx4200_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_e910_server_blade:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_e910t_server_blade:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_m750_server_blade:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_microserver_gen10_plus:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_ml30_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_ml30_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_ml110_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_ml350_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_xl170r_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_xl190r_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_xl220n_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_xl225n_gen10_plus_1u_node:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_xl230k_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_xl270d_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_xl290n_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_xl450_gen10_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_xl645d_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_xl675d_gen10_plus_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_proliant_xl925g_gen10_plus_1u_4-node_configure-to-order_server:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_storage_file_controller:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_storage_performance_file_controller:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_storeeasy_1460_storage:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_storeeasy_1560_storage:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_storeeasy_1660_expanded_storage:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_storeeasy_1660_performance_storage:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_storeeasy_1660_storage:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_storeeasy_1860_performance_storage:*:*:*:*:*:*:*:
- cpe:2.3:h:hpe:hpe_storeeasy_1860_storage:*:*:*:*:*:*:*:
http://support.hpe.com/hpesc/public/docDisplay?docLocale=en_US&docId=hpesbhf04365en_us
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
