HP BladeSystem C-Class Onboard Administrator Remote Disclosure Of Information Network Vulnerability

Summary

A potential security vulnerability has been identified with HP BladeSystem c-Class Onboard Administrator (OA) running OpenSSL. This vulnerability could be exploited remotely to allow the disclosure of information.

Impact

Successfully exploiting this issue may allow attackers to obtain sensitive information by conducting a man-in-the-middle attack. This may lead to other attacks.

Solution

Update to version 4.22

Affected

Onboard Administrator < 4.22

Detection

Check the Onboard Administrator version

References