Vulnerability Details : CVE-2017-12542
Public exploit exists!
A authentication bypass and execution of code vulnerability in HPE Integrated Lights-out 4 (iLO 4) version prior to 2.53 was found.
Exploit prediction scoring system (EPSS) score for CVE-2017-12542
Probability of exploitation activity in the next 30 days: 97.22%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 100 % EPSS Score History EPSS FAQ
Metasploit modules for CVE-2017-12542
-
HP iLO 4 1.00-2.50 Authentication Bypass Administrator Account Creation
Disclosure Date: 2017-08-24First seen: 2020-04-26auxiliary/admin/hp/hp_ilo_create_admin_accountThis module exploits an authentication bypass in HP iLO 4 1.00 to 2.50, triggered by a buffer overflow in the Connection HTTP header handling by the web server. Exploiting this vulnerability gives full access to the REST API, allowing arbitrary accounts creation.
CVSS scores for CVE-2017-12542
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
10.0
|
HIGH | AV:N/AC:L/Au:N/C:C/I:C/A:C |
10.0
|
10.0
|
NIST |
10.0
|
CRITICAL | CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H |
3.9
|
6.0
|
NIST |
References for CVE-2017-12542
-
http://www.securityfocus.com/bid/100467
HP Integrated Lights-Out CVE-2017-12542 Multiple Unspecified Security VulnerabilitiesThird Party Advisory;VDB Entry
-
https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbhf03769en_us
HPESBHF03769 rev.2 - HPE Integrated Lights-out 4 (iLO 4), and Moonshot Multiple Remote VulnerabilitiesVendor Advisory
-
https://www.exploit-db.com/exploits/44005/
HPE iLO 4 < 2.53 - Add New Administrator UserExploit;Third Party Advisory;VDB Entry
-
http://www.securitytracker.com/id/1039222
HPE integrated Lights Out (iLO) Unspecified Flaw Lets Remote Users Bypass Authentication and Execute Arbitrary Code - SecurityTrackerThird Party Advisory;VDB Entry
Products affected by CVE-2017-12542
- cpe:2.3:o:hp:integrated_lights-out_4_firmware:*:*:*:*:*:*:*:*