Privilege escalation in HPE products
| Risk | Low |
| Patch available | NO |
| Number of vulnerabilities | 2 |
| CVE-ID | CVE-2017-5706 CVE-2017-5709 |
| CWE-ID | CWE-120 |
| Exploitation vector | Local |
| Public exploit | N/A |
| Vulnerable software |
HPE Synergy 480 Gen10 Compute Module ROM Hardware solutions / Firmware HPE Synergy 660 Gen10 Compute Module ROM Hardware solutions / Firmware HPE ProLiant XL450 Gen10 Server ROM Hardware solutions / Firmware HPE ProLiant XL230k Gen10 Server ROM. Hardware solutions / Firmware HPE ProLiant XL190r Gen10 Server ROM Hardware solutions / Firmware HPE ProLiant XL170r Gen10 Server ROM Hardware solutions / Firmware HPE ProLiant ML350 Gen10 Server ROM Hardware solutions / Firmware HPE ProLiant ML110 Gen10 Server ROM Hardware solutions / Firmware HPE ProLiant ML30 Gen9 Server SPS Hardware solutions / Firmware HPE ProLiant m710x Server Cartridge ROM Hardware solutions / Firmware HPE ProLiant DL580 Gen10 Server ROM Hardware solutions / Firmware HPE ProLiant DL560 Gen10 Server ROM Hardware solutions / Firmware HPE ProLiant DL380 Gen10 Server ROM Hardware solutions / Firmware HPE ProLiant DL360 Gen10 Server ROM Hardware solutions / Firmware HPE ProLiant DL20 Gen9 Server SPS Hardware solutions / Firmware HPE ProLiant BL460c Gen10 Server Blade ROM Hardware solutions / Firmware HPE Apollo 6000 DLC System ROM Hardware solutions / Firmware HPE Apollo 4510 System ROM Hardware solutions / Firmware HPE Apollo 2000 System ROM Hardware solutions / Firmware |
| Vendor | HPE |
Security Bulletin
This security bulletin contains information about 2 vulnerabilities.
1) Buffer overflow
EUVDB-ID: #VU9388
Risk: Low
CVSSv4.0: 2.2 [CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:N/SC:H/SI:H/SA:H/E:U/U:Clear]
CVE-ID: CVE-2017-5706
CWE-ID:
CWE-120 - Buffer overflow
Exploit availability: No
DescriptionThe vulnerability allows a local attacker to execute arbitrary code on the target system.
The weakness exists due to multiple buffer overflows in kernel. A local attacker can send a specially crafted request, trigger memory corruption, execute arbitrary code an compromise the vulnerable system.
Cybersecurity Help is currently unaware of any solutions addressing the vulnerability.
Vulnerable software versionsHPE Synergy 480 Gen10 Compute Module ROM: All versions
HPE Synergy 660 Gen10 Compute Module ROM: All versions
HPE ProLiant XL450 Gen10 Server ROM: All versions
HPE ProLiant XL230k Gen10 Server ROM.: All versions
HPE ProLiant XL190r Gen10 Server ROM: All versions
HPE ProLiant XL170r Gen10 Server ROM: All versions
HPE ProLiant ML350 Gen10 Server ROM: All versions
HPE ProLiant ML110 Gen10 Server ROM: All versions
HPE ProLiant ML30 Gen9 Server SPS: All versions
HPE ProLiant m710x Server Cartridge ROM: All versions
HPE ProLiant DL580 Gen10 Server ROM: All versions
HPE ProLiant DL560 Gen10 Server ROM: All versions
HPE ProLiant DL380 Gen10 Server ROM: All versions
HPE ProLiant DL360 Gen10 Server ROM: All versions
HPE ProLiant DL20 Gen9 Server SPS: All versions
HPE ProLiant BL460c Gen10 Server Blade ROM: All versions
HPE Apollo 6000 DLC System ROM: All versions
HPE Apollo 4510 System ROM: All versions
HPE Apollo 2000 System ROM: All versions
CPE2.3- cpe:2.3:h:hpe:hpe_synergy_480_gen10_compute_module_rom:*:*:*:*:*:*:*:*
- cpe:2.3:h:hpe:hpe_synergy_660_gen10_compute_module_rom:*:*:*:*:*:*:*:*
- cpe:2.3:h:hpe:hpe_proliant_xl450_gen10_server_rom:*:*:*:*:*:*:*:*
- cpe:2.3:h:hpe:hpe_proliant_xl230k_gen10_server_rom:*:*:*:*:*:*:*:*
- cpe:2.3:h:hpe:hpe_proliant_xl190r_gen10_server_rom:*:*:*:*:*:*:*:*
- cpe:2.3:h:hpe:hpe_proliant_xl170r_gen10_server_rom:*:*:*:*:*:*:*:*
- cpe:2.3:h:hpe:hpe_proliant_ml350_gen10_server_rom:*:*:*:*:*:*:*:*
- cpe:2.3:h:hpe:hpe_proliant_ml110_gen10_server_rom:*:*:*:*:*:*:*:*
- cpe:2.3:h:hpe:hpe_proliant_ml30_gen9_server_sps:*:*:*:*:*:*:*:*
- cpe:2.3:h:hpe:hpe_proliant_m710x_server_cartridge_rom:*:*:*:*:*:*:*:*
- cpe:2.3:h:hpe:hpe_proliant_dl580_gen10_server_rom:*:*:*:*:*:*:*:*
- cpe:2.3:h:hpe:hpe_proliant_dl560_gen10_server_rom:*:*:*:*:*:*:*:*
- cpe:2.3:h:hpe:hpe_proliant_dl380_gen10_server_rom:*:*:*:*:*:*:*:*
- cpe:2.3:h:hpe:hpe_proliant_dl360_gen10_server_rom:*:*:*:*:*:*:*:*
- cpe:2.3:h:hpe:hpe_proliant_dl20_gen9_server_sps:*:*:*:*:*:*:*:*
- cpe:2.3:h:hpe:hpe_proliant_bl460c_gen10_server_blade_rom:*:*:*:*:*:*:*:*
- cpe:2.3:h:hpe:hpe_apollo_6000_dlc_system_rom:*:*:*:*:*:*:*:*
- cpe:2.3:h:hpe:hpe_apollo_4510_system_rom:*:*:*:*:*:*:*:*
- cpe:2.3:h:hpe:hpe_apollo_2000_system_rom:*:*:*:*:*:*:*:*
https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbhf03798en_us
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
2) Privilege escalation
EUVDB-ID: #VU9389
Risk: Low
CVSSv4.0: 7.2 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:H/SI:H/SA:N/E:U/U:Clear]
CVE-ID: CVE-2017-5709
CWE-ID:
CWE-120 - Buffer overflow
Exploit availability: No
DescriptionThe vulnerability allows a local attacker to gain elevated privileges on the target system.
The weakness exists due to unknown error. A local attacker can send a specially crafted request,gain elevated privileges and access privileged content.
Cybersecurity Help is currently unaware of any solutions addressing the vulnerability.
HPE Synergy 480 Gen10 Compute Module ROM: All versions
HPE Synergy 660 Gen10 Compute Module ROM: All versions
HPE ProLiant XL450 Gen10 Server ROM: All versions
HPE ProLiant XL230k Gen10 Server ROM.: All versions
HPE ProLiant XL190r Gen10 Server ROM: All versions
HPE ProLiant XL170r Gen10 Server ROM: All versions
HPE ProLiant ML350 Gen10 Server ROM: All versions
HPE ProLiant ML110 Gen10 Server ROM: All versions
HPE ProLiant ML30 Gen9 Server SPS: All versions
HPE ProLiant m710x Server Cartridge ROM: All versions
HPE ProLiant DL580 Gen10 Server ROM: All versions
HPE ProLiant DL560 Gen10 Server ROM: All versions
HPE ProLiant DL380 Gen10 Server ROM: All versions
HPE ProLiant DL360 Gen10 Server ROM: All versions
HPE ProLiant DL20 Gen9 Server SPS: All versions
HPE ProLiant BL460c Gen10 Server Blade ROM: All versions
HPE Apollo 6000 DLC System ROM: All versions
HPE Apollo 4510 System ROM: All versions
HPE Apollo 2000 System ROM: All versions
CPE2.3- cpe:2.3:h:hpe:hpe_synergy_480_gen10_compute_module_rom:*:*:*:*:*:*:*:*
- cpe:2.3:h:hpe:hpe_synergy_660_gen10_compute_module_rom:*:*:*:*:*:*:*:*
- cpe:2.3:h:hpe:hpe_proliant_xl450_gen10_server_rom:*:*:*:*:*:*:*:*
- cpe:2.3:h:hpe:hpe_proliant_xl230k_gen10_server_rom:*:*:*:*:*:*:*:*
- cpe:2.3:h:hpe:hpe_proliant_xl190r_gen10_server_rom:*:*:*:*:*:*:*:*
- cpe:2.3:h:hpe:hpe_proliant_xl170r_gen10_server_rom:*:*:*:*:*:*:*:*
- cpe:2.3:h:hpe:hpe_proliant_ml350_gen10_server_rom:*:*:*:*:*:*:*:*
- cpe:2.3:h:hpe:hpe_proliant_ml110_gen10_server_rom:*:*:*:*:*:*:*:*
- cpe:2.3:h:hpe:hpe_proliant_ml30_gen9_server_sps:*:*:*:*:*:*:*:*
- cpe:2.3:h:hpe:hpe_proliant_m710x_server_cartridge_rom:*:*:*:*:*:*:*:*
- cpe:2.3:h:hpe:hpe_proliant_dl580_gen10_server_rom:*:*:*:*:*:*:*:*
- cpe:2.3:h:hpe:hpe_proliant_dl560_gen10_server_rom:*:*:*:*:*:*:*:*
- cpe:2.3:h:hpe:hpe_proliant_dl380_gen10_server_rom:*:*:*:*:*:*:*:*
- cpe:2.3:h:hpe:hpe_proliant_dl360_gen10_server_rom:*:*:*:*:*:*:*:*
- cpe:2.3:h:hpe:hpe_proliant_dl20_gen9_server_sps:*:*:*:*:*:*:*:*
- cpe:2.3:h:hpe:hpe_proliant_bl460c_gen10_server_blade_rom:*:*:*:*:*:*:*:*
- cpe:2.3:h:hpe:hpe_apollo_6000_dlc_system_rom:*:*:*:*:*:*:*:*
- cpe:2.3:h:hpe:hpe_apollo_4510_system_rom:*:*:*:*:*:*:*:*
- cpe:2.3:h:hpe:hpe_apollo_2000_system_rom:*:*:*:*:*:*:*:*
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
