37 matches found
HPESBHF05020 rev.1 - Certain HPE SimpliVity Servers Using Certain AMD EPYC Processors, AMD-SB-3023:AMD Server Vulnerabilities, Multiple Vulnerabilities
Potential Security Impact: Local: Arbitrary Command Execution, Denial of Service DoS, memory corruption, Buffer Overflow SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE SimpliVity 325 Gen10 - Prior to SimpliVity Gen10 Support Pack SVTSP 2026-0605- Prior to SimpliVity Gen11...
HPESBHF05017 rev.1 - Certain HPE SimpliVity Servers Using Certain Intel Processors, INTEL-SA-01396, 2026.1 IPU, Intel Processor Firmware Advisory, Local Escalation of Privilege Vulnerability
Potential Security Impact: Local: Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE SimpliVity 380 Gen11 - Prior to SimpliVity Gen11 Support Pack 20260605 HPE SimpliVity 380 Gen10 Plus - Prior to SimpliVity Gen10 Support Pack 20260605 CVSS Scores: | CVE |...
HPESBHF05041 rev.2 - Certain HPE SimpliVity Servers Using Certain AMD EPYC Processors, AMD-SB-7054: Incorrect use of LocateProtocol Service of the EFI_BOOT_Services table in SMI Handler, Local Arbitrary Code Execution Vulnerability
Potential Security Impact: Local: Arbitrary Code Execution SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE SimpliVity 325 Gen10 - Prior to SimpliVity Gen10 Support Pack 2026-0417 HPE SimpliVity 325 Gen10 Plus - Prior to SimpliVity Gen10 Support Pack 2026-0417 HPE SimpliVity 32...
HPESBHF05021 rev.1 - Certain HPE ProLiant AMD DL/XL Servers Using Certain AMD EPYC Processors, AMD-SB-7059: Guest Initiated Machine Check Errors, Denial of Service Vulnerability
Potential Security Impact: Remote: Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant Compute DL325 Gen12 - Prior to v1.3411-28-2025 HPE ProLiant Compute DL345 Gen12 - Prior to v1.3411-28-2025 HPE ProLiant DL145 Gen11 - Prior to v1.7008-07-2025 HPE...
HP Integrated Lights-Out Improper Input Validation (CVE-2018-7105)
A security vulnerability in HPE Integrated Lights-Out 5 iLO 5 for HPE Gen10 Servers prior to v1.35, HPE Integrated Lights-Out 4 iLO 4 prior to v2.61, HPE Integrated Lights-Out 3 iLO 3 prior to v1.90 could be remotely exploited to execute arbitrary code leading to disclosure of information. This...
HP Integrated Lights-Out Improper Neutralization of Input During Web Page Generation (CVE-2019-11982)
A remote cross site scripting vulnerability was identified in HPE Integrated Lights-Out 4 iLO 4 earlier than v2.61b for Gen9 servers and Integrated Lights-Out 5 iLO 5 for Gen10 Servers earlier than version v1.39. This plugin only works with Tenable.ot. Please visit...
HP Integrated Lights-Out Improper Restriction of Operations within the Bounds of a Memory Buffer (CVE-2019-11983)
A remote buffer overflow vulnerability was identified in HPE Integrated Lights-Out 4 iLO 4 earlier than v2.61b for Gen9 servers and Integrated Lights-Out 5 iLO 5 for Gen10 Servers earlier than version v1.39. This plugin only works with Tenable.ot. Please visit...
HPESBHF04798 rev.1 - Certain HPE SimpliVity Servers using AMD 3rd Generation and 4th Generation EPYC Processors, AMD-SB-3015, Undermining Integrity Features of SEV-SNP with Memory Aliasing (BadRAM)
Potential Security Impact: Local: Compromise of System Integrity SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE SimpliVity 325 Gen10 Plus - Prior to HPE SimpliVity Gen10 Support Pack SVTSPGen10 v2025-0630 HPE SimpliVity 325 Gen11 - Prior to HPE SimpliVity Gen11 Support Pack...
HPESBHF04896 rev.1 - Certain HPE SimpliVity Servers Using Certain AMD EPYC Processors, AMD-SB-7029: AMD Transient Scheduler Attacks, Multiple Vulnerabilities
Potential Security Impact: Local: Disclosure of Privileged Information, Disclosure of Sensitive Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE SimpliVity 325 Gen10 Plus - Prior to Gen10 Support Pack SVTSPGen10 v20250630 HPE SimpliVity 325 Gen11 - Prior to Gen11...
HPESBHF04861 rev.2 - Certain HPE ProLiant DL/ML, MicroServer, Synergy and Edgeline Servers Using Certain Intel Processor BIOS, INTEL-SA-01153, 2025.1 IPU, Intel Processor Advisory, Local Disclosure of Information Vulnerability
Potential Security Impact: Local: Disclosure of Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant DL110 Gen10 Plus Telco server - Prior to v2.3001-16-2025 HPE ProLiant DL380 Gen10 Plus server - Prior to v2.3001-16-2025 HPE ProLiant DL360 Gen10 Plus server -...
HPESBHF04690 rev.1 - Certain HPE SimpliVity Servers Using Certain Intel Processors, INTEL-SA-01083, 2024.3 IPU - SMI Transfer Monitor Advisory, Local Escalation of Privilege Vulnerability
Potential Security Impact: Local: Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE SimpliVity 380 Gen10 Plus - Prior to HPE SimpliVity Gen10 Support Pack SVTSP v20241129 HPE SimpliVity 170r Gen10 Server - Prior to HPE SimpliVity Gen10 Support Pack SVTSP...
HPESBHF04753 rev.1 - Certain HPE SimpliVity Servers Using Certain Intel Processors, INTEL-SA-01071 - 2024.3 IPU - UEFI Firmware Advisory, Multiple Vulnerabilities
Potential Security Impact: Local: Denial of Service DoS, Disclosure of Information, Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE SimpliVity 380 Gen10 - Prior to HPE SimpliVity Gen10 Support Pack SVTSP v20241129 HPE SimpliVity 380 Gen10 G - Prior to H...
HPESBHF04716 rev.1 - Certain HPE SimpliVity Servers Using Certain Intel or AMD Processor BIOS, Out-of-Bounds Write Vulnerability
Potential Security Impact: Remote: Buffer Overflow SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE SimpliVity 325 Gen 11 - Prior to HPE SimpliVity Gen11 Support Pack SVTSP v20240930 HPE SimpliVity 380 Gen11 - Prior to HPE SimpliVity Gen11 Support Pack SVTSP v20240930 HPE...
HPESBHF04544 rev.1 - HPE Integrated Lights-Out 5 (iLO 5), and HPE Integrated Lights-Out 6 (iLO 6), Remote Denial of Service
Potential Security Impact: Remote: Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Integrated Lights-Out 6 iLO 6 - Prior to iLO 6 v1.53 HPE Integrated Lights-Out 5 iLO 5 for HPE Gen10 Servers - Prior to iLO 5 v2.98 HPE ProLiant BL460c Gen10 Server Blade -...
HPESBHF04485 rev.1 - HPE Cloudline CL4150 Using AMI MegaRac BMC Firmware, Multiple Vulnerabilities
Potential Security Impact: Remote: Arbitrary Code Execution, Code Execution, Escalation of Privilege, Buffer Overflow SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Cloudline CL4150 Gen10 Server - Prior to v3.09.0.0 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- ...
HPESBHF04456 rev.1 - HPE Integrated Lights-Out 6 (iLO 6), Integrated Lights-Out 5 (iLO 5) and Integrated Lights-Out 4 (iLO 4), Remote Cross-Site Scripting
Potential Security Impact: Remote: Cross-Site Scripting XSS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Integrated Lights-Out 4 iLO 4 - Prior to v2.82 HPE Integrated Lights-Out 5 iLO 5 for HPE Gen10 Servers - Prior to v2.78 HPE Integrated Lights-Out 6 iLO 6 - Prior to v1.2...
HPESBHF04440 rev.1 - Certain HPE Apollo, XL Servers Using Certain Intel Processors, INTEL-SA-00717, 2023.1 IPU - BIOS Advisory, Local Escalation of Privilege Vulnerabilities
Potential Security Impact: Local: Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant XL450 Gen10 Server - Prior to 2.7602-09-2023 HPE Apollo 2000 Gen10 Plus System - Prior to 1.7202-02-2023 HPE Apollo 4200 Gen10 Plus System - Prior to 1.7202-02-20...
HPESBHF04366 rev.3 - HPE Integrated Lights-Out 5 (iLO 5), or Integrated Lights-out 4 (iLO 4) Using OpenSSL, Remote Denial of Service
Potential Security Impact: Remote: Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Integrated Lights-Out 5 iLO 5 for HPE Gen10 Servers - Prior to v2.72 HPE Integrated Lights-Out 4 iLO 4 - Prior to v2.81 HP ConvergedSystem 700 - Varies, based on server...
HPESBHF04333 rev.4 - HPE Integrated Lights-Out 5 (iLO 5), Multiple Vulnerabilities
Potential Security Impact: Local: Arbitrary Code Execution, Denial of Service DoS, Disclosure of Sensitive Information, Unauthorized Data Modification SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Integrated Lights-Out 5 iLO 5 for HPE Gen10 Servers - Prior to 2.71 HPE Apollo...
Vulnerabilities fixed in HPE ProLiant Intel BIOS
Vulnerabilities have been fixed in the Intel BIOS of HPE ProLiant DX servers. The vulnerabilities in DX Gen 10 servers with features DX170r, DX190r, DX360, DX380, DX560 and DX4200 allow a local malicious person able to obtain sensitive information or increase privileges. HPE has made updates...