Lucene search
K

11 matches found

Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.5 views

HP Integrated Lights-Out Information Disclosure (CVE-2018-7112)

The HPE-provided Windows firmware installer for certain Gen9, Gen8, G7,and G6 HPE servers allows local disclosure of privileged information. This issue was resolved in previously provided firmware updates as follows. The HPE Windows firmware installer was updated in the system ROM updates which...

5.5CVSS5.7AI score0.00668EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.5 views

HP Integrated Lights-Out Improper Neutralization of Input During Web Page Generation (CVE-2019-11982)

A remote cross site scripting vulnerability was identified in HPE Integrated Lights-Out 4 iLO 4 earlier than v2.61b for Gen9 servers and Integrated Lights-Out 5 iLO 5 for Gen10 Servers earlier than version v1.39. This plugin only works with Tenable.ot. Please visit...

8.3CVSS7.3AI score0.02094EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.6 views

HP Integrated Lights-Out Improper Restriction of Operations within the Bounds of a Memory Buffer (CVE-2019-11983)

A remote buffer overflow vulnerability was identified in HPE Integrated Lights-Out 4 iLO 4 earlier than v2.61b for Gen9 servers and Integrated Lights-Out 5 iLO 5 for Gen10 Servers earlier than version v1.39. This plugin only works with Tenable.ot. Please visit...

8.3CVSS7.7AI score0.01102EPSS
Exploits0References2
HPE Security Bulletins
HPE Security Bulletins
added 2022/06/29 12:0 a.m.3 views

HPESBST04324 rev.1 - Certain HPE SimpliVity Servers Using Certain Intel Processors, INTEL-SA-00615, 2022.1 IPU – Intel Processors MMIO Stale Data Advisory, Local Disclosure of Information

Potential Security Impact: Local: Disclosure of Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE SimpliVity 170r Gen10 Server - Prior to 2.6605172022 - Use BIOS family U38 HPE SimpliVity 190r Gen10 Server - Prior to 2.6605172022 - Use BIOS family U38 HPE SimpliVity...

6.1CVSS6.7AI score0.06451EPSS
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2021/06/08 12:0 a.m.3 views

HPESBHF04152 rev.1 - HPE Gen9 Servers Using Certain Intel Processors, Local Escalation of Privilege

Potential Security Impact: Local: Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant XL450 Gen9 Server - Prior to version 2.90 HPE ProLiant XL270d Gen9 Special Server - Prior to version 2.90 HPE Apollo 4200 Gen9 Server - Prior to version 2.90 HPE...

7.8CVSS6.8AI score0.00347EPSS
Exploits0
OSV
OSV
added 2021/01/29 7:15 p.m.4 views

CVE-2021-25133

The Baseboard Management ControllerBMC in HPE Cloudline CL5800 Gen9 Server; HPE Cloudline CL5200 Gen9 Server; HPE Cloudline CL4100 Gen10 Server; HPE Cloudline CL3100 Gen10 Server; HPE Cloudline CL5800 Gen10 Server BMC firmware has a local buffer overlfow in spxrestservice setradiusconfigfunc...

7.8CVSS6AI score0.00324EPSS
Exploits0References1
OSV
OSV
added 2021/01/29 7:15 p.m.5 views

CVE-2021-25127

The Baseboard Management ControllerBMC in HPE Cloudline CL5800 Gen9 Server; HPE Cloudline CL5200 Gen9 Server; HPE Cloudline CL4100 Gen10 Server; HPE Cloudline CL3100 Gen10 Server; HPE Cloudline CL5800 Gen10 Server BMC firmware has a local buffer overlfow in spxrestservice generatesslcertificatefu...

7.8CVSS7.3AI score0.00235EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/01/29 12:0 a.m.7 views

HPE Cloudline Buffer Error Vulnerability in Multiple Products

HPE Cloudline CL5200 Gen9 Server and others are a dense cloud storage server appliance from HPE America. A buffer error vulnerability exists in multiple HPE Cloudline products, which stems from a local buffer overflow in the spxrestservice downloadkvmjnlpfunc function. The following products and...

7.8CVSS7.3AI score0.00324EPSS
Exploits0References2
CNVD
CNVD
added 2019/06/10 12:0 a.m.6 views

HPE Integrated Lights-Out Buffer Overflow Vulnerability

HPE Integrated Lights-Out is a remote control solution from Hewlett Packard Enterprise HPE. The solution enables remote monitoring and operation and maintenance of IT assets such as servers. A buffer overflow vulnerability exists in HPE Integrated Lights-Out 4 iLO 4 for Gen9 servers prior to...

8.3CVSS7.4AI score0.01102EPSS
Exploits0References1
OSV
OSV
added 2019/06/05 5:29 p.m.10 views

CVE-2019-11982

A remote cross site scripting vulnerability was identified in HPE Integrated Lights-Out 4 iLO 4 earlier than v2.61b for Gen9 servers and Integrated Lights-Out 5 iLO 5 for Gen10 Servers earlier than version v1.39...

8.3CVSS6.8AI score
Exploits0References1
HPE Security Bulletins
HPE Security Bulletins
added 2017/10/16 12:0 a.m.3 views

HPESBHF03789 rev.2 - Certain HPE Gen9 Systems with HP Trusted Platform Module v2.0 Option, Unauthorized Access to Data

Potential Security Impact: Local: Unauthorized Access to Data; Remote: Unauthorized Access to Data SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Trusted Platform Module 2.0 Kit FW 5.51 - TPM 2.0 FW 5.62 is not affected. This is the Gen9 TPM 2.0 option only Gen9 servers could...

7.4CVSS6.7AI score0.09825EPSS
Exploits0
Rows per page
Query Builder