According to analysis by firmware security firm Eclypsium, 7,799 HPE iLO (HPE's Integrated Lights-Out) server baseboard management controllers (BMCs) are exposed to the internet and most do not appear to be running the latest version of the firmware. But the problem doesn't stop there.
I don’t think iDrac are much better, though, in that regard.
There have been and there will be many stories about these BMCs, unfortunately. One thing seems for sure: they should be in an isolated network or even better: unplugged.
deleted by creator
Internet is that strange place where you find instances of stuff nobody should ever do 😆
deleted by creator