Strix
26.1K

CVE-2014-7876

UnknownEPSS 12.88%

Last modified

CVE-2014-7876 is a vulnerability of currently unknown severity. Unspecified vulnerability in HP Integrated Lights-Out (iLO) firmware 2 before 2.27 and 4 before 2.03 and iLO Chassis Management (CM) firmware before 1.30 allows remote attackers to gain privileges, execute arbitrary code, or cause a denial of service via unknown vectors.. EPSS estimates a 12.88% chance of exploitation in the next 30 days.

Description

Unspecified vulnerability in HP Integrated Lights-Out (iLO) firmware 2 before 2.27 and 4 before 2.03 and iLO Chassis Management (CM) firmware before 1.30 allows remote attackers to gain privileges, execute arbitrary code, or cause a denial of service via unknown vectors.

Metrics

EPSS Probability
12.88%

95.8th percentile

Probability of exploitation in the next 30 days. Learn more

Affected Software

VendorProductVersions
HpIntegrated Lights-Out 2 Firmware<= 2.25
HpIntegrated Lights-Out 4 Firmware<= 2.01
HpIntegrated Lights-Out Chassis Management Firmware<= 1.29

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2014-7876?
Unspecified vulnerability in HP Integrated Lights-Out (iLO) firmware 2 before 2.27 and 4 before 2.03 and iLO Chassis Management (CM) firmware before 1.30 allows remote attackers to gain privileges, execute arbitrary code, or cause a denial of service via unknown vectors.
How severe is CVE-2014-7876?
Severity scoring for CVE-2014-7876 is pending analysis. The EPSS model estimates a 12.88% probability of exploitation in the next 30 days.
How do I fix CVE-2014-7876?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2014-7876?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST