high
7.5
Advisory Published
Updated

CVE-2022-23704

First published: Mon May 09 2022(Updated: )

A potential security vulnerability has been identified in Integrated Lights-Out 4 (iLO 4). The vulnerability could allow remote Denial of Service. The vulnerability is resolved in Integrated Lights-Out 4 (iLO 4) 2.80 and later.

Credit: security-alert@hpe.com

Affected SoftwareAffected VersionHow to fix
HP Integrated Lights-Out 4 Firmware<2.80
HPE Apollo 4200 Gen9 Server
HP ProLiant BL420c Gen8 Server
HPE ProLiant BL460c Gen8 Blade Server
HP ProLiant BL460c Gen9 Server Blade
HP ProLiant BL465c Gen8 (AMD)
HPE ProLiant bl660c Gen8 Blade Server
HPE ProLiant BL660c Gen9 Server Firmware
HPE ProLiant DL120 Gen9 Server
HP ProLiant DL160 Gen8 Server
HP ProLiant DL160 Gen9 Server
HP ProLiant DL180 Gen9 Server
HP ProLiant DL20 Gen9 Server Firmware
HPE ProLiant DL320e Gen8 v2 Server
HP ProLiant DL320e Gen8 v2 Server Firmware
HP ProLiant DL360 Gen9 Server
HPE ProLiant DL360e Gen8 Server
HPE ProLiant DL360p Gen8 Server
HP ProLiant DL380 Gen9 Server Firmware
HP ProLiant DL380e Gen8 Server
HPE ProLiant DL380p Gen8 Server
HPE ProLiant DL385p Gen8 (AMD) Firmware
HP ProLiant DL560 Gen8 Server Firmware
HPE ProLiant DL560 Gen9 Server
HP ProLiant DL580 Gen8 Server
HPE ProLiant DL580 Gen9 Server
HP ProLiant DL60 Gen9 Server
HPE ProLiant DL80 Gen9 Server
HPE ProLiant EC200a Server
HPE ProLiant MicroServer Gen8
HPE ProLiant ml110 gen9 server
HPE ProLiant ML150 Gen9 Server Firmware
HP ProLiant ML30 Gen9 Server
HPE ProLiant ML310e Gen8 v2 Server
HP ProLiant ML310e Gen8 v2 Server Firmware
HP ProLiant ML350 Gen9 Server
HPE ProLiant ML350e Gen8 v2 Server Firmware
HP ProLiant ML350p Gen8 Server Firmware
HPE ProLiant SL210t Gen8 Server
HPE ProLiant sl230s gen8 server
HPE ProLiant SL250s Gen8 Server
HPE ProLiant SL270s Gen8 Server
HPE ProLiant SL270s Gen8 Server Firmware
HPE ProLiant SL4540 Gen8 Server
HPE ProLiant WS460c Gen8 Graphics Server Blade
HPE ProLiant WS460c Gen9 Graphics Server Blade
HP ProLiant XL170R Gen9
HP ProLiant XL190r Gen9 Server Firmware
HPE ProLiant XL220a Gen8 v2 Server
HPE ProLiant XL230a Gen9 Server Firmware
HPE ProLiant XL250a Gen9 Server Firmware
HPE ProLiant XL450 Gen9 Server
HPE ProLiant xl730f Gen9 Server
HP ProLiant XL740f Gen9 Server
HP ProLiant XL750f Gen9 Server
HPE Synergy 480 Gen9
HPE Synergy 620 Gen9
HPE Synergy 660 Gen9
HPE Synergy 680 Gen9

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Frequently Asked Questions

  • What is the vulnerability ID for this security vulnerability?

    The vulnerability ID for this security vulnerability is CVE-2022-23704.

  • What is the severity level of CVE-2022-23704?

    The severity level of CVE-2022-23704 is high, with a severity value of 7.5.

  • What is the affected software for CVE-2022-23704?

    The affected software for CVE-2022-23704 is Integrated Lights-Out 4 (iLO 4) versions up to 2.80.

  • How can I resolve the vulnerability CVE-2022-23704?

    You can resolve the vulnerability CVE-2022-23704 by updating Integrated Lights-Out 4 (iLO 4) to version 2.80 or later.

  • Where can I find more information about CVE-2022-23704?

    You can find more information about CVE-2022-23704 in the HP support document at the following link: [link](https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf04240en_us).

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203