Note to readers

This publication does not currently meet the Government of Canada's Web Standards. The information remains valid.

HP security bulletin

Number: AV17-129
Date: 25 August 2017

Purpose

The purpose of this advisory is to bring attention to an HP security bulletin.

Assessment

HP has released a security update to address a potential security vulnerability that has been identified in HPE Integrated Lights-out (iLO 4) which could be exploited remotely to allow authentication bypass and execution of code.

Affected software versions:
- HP Integrated Lights-Out 4 (iLO 4), Prior to 2.53

CVE Reference: CVE-2017-12542

Suggested Action

CCIRC recommends that system administrators test and deploy the vendor-released updates to affected applications accordingly.

References:

http://h20565.www2.hpe.com/hpsc/doc/public/display?docId=hpesbhf03769en_us

Date modified: