11 matches found
HP Integrated Lights-Out Improper Input Validation (CVE-2018-7105)
A security vulnerability in HPE Integrated Lights-Out 5 iLO 5 for HPE Gen10 Servers prior to v1.35, HPE Integrated Lights-Out 4 iLO 4 prior to v2.61, HPE Integrated Lights-Out 3 iLO 3 prior to v1.90 could be remotely exploited to execute arbitrary code leading to disclosure of information. This...
HPESBHF04544 rev.1 - HPE Integrated Lights-Out 5 (iLO 5), and HPE Integrated Lights-Out 6 (iLO 6), Remote Denial of Service
Potential Security Impact: Remote: Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Integrated Lights-Out 6 iLO 6 - Prior to iLO 6 v1.53 HPE Integrated Lights-Out 5 iLO 5 for HPE Gen10 Servers - Prior to iLO 5 v2.98 HPE ProLiant BL460c Gen10 Server Blade -...
HPESBHF04456 rev.1 - HPE Integrated Lights-Out 6 (iLO 6), Integrated Lights-Out 5 (iLO 5) and Integrated Lights-Out 4 (iLO 4), Remote Cross-Site Scripting
Potential Security Impact: Remote: Cross-Site Scripting XSS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Integrated Lights-Out 4 iLO 4 - Prior to v2.82 HPE Integrated Lights-Out 5 iLO 5 for HPE Gen10 Servers - Prior to v2.78 HPE Integrated Lights-Out 6 iLO 6 - Prior to v1.2...
HPESBHF04366 rev.3 - HPE Integrated Lights-Out 5 (iLO 5), or Integrated Lights-out 4 (iLO 4) Using OpenSSL, Remote Denial of Service
Potential Security Impact: Remote: Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Integrated Lights-Out 5 iLO 5 for HPE Gen10 Servers - Prior to v2.72 HPE Integrated Lights-Out 4 iLO 4 - Prior to v2.81 HP ConvergedSystem 700 - Varies, based on server...
HPESBST04324 rev.1 - Certain HPE SimpliVity Servers Using Certain Intel Processors, INTEL-SA-00615, 2022.1 IPU – Intel Processors MMIO Stale Data Advisory, Local Disclosure of Information
Potential Security Impact: Local: Disclosure of Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE SimpliVity 170r Gen10 Server - Prior to 2.6605172022 - Use BIOS family U38 HPE SimpliVity 190r Gen10 Server - Prior to 2.6605172022 - Use BIOS family U38 HPE SimpliVity...
Vulnerabilities fixed in HPE ProLiant Intel BIOS
Vulnerabilities have been fixed in the Intel BIOS of HPE ProLiant DX servers. The vulnerabilities in DX Gen 10 servers with features DX170r, DX190r, DX360, DX380, DX560 and DX4200 allow a local malicious person able to obtain sensitive information or increase privileges. HPE has made updates...
HPESBHF04286 rev.4 - Certain HPE ProLiant BL/DL/ML/XL/MicroServer and Apollo Servers Using Certain Intel Processor BIOS, INTEL-SA-00601, 2022.1 IPU – Intel BIOS Advisory, Multiple Local Vulnerabilities
Potential Security Impact: Local: Disclosure of Information, Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Apollo 4200 Gen10 Server - Prior to 2.6605172022 - Addresses an incomplete fix for CVE-2021-0159, CVE-2021-33123, and CVE-2021-33124 HPE ProLian...
CVE-2021-29209
A remote dom xss, crlf injection vulnerability was discovered in HPE Integrated Lights-Out 4 iLO 4; HPE SimpliVity 380 Gen9; HPE Integrated Lights-Out 5 iLO 5 for HPE Gen10 Servers; HPE SimpliVity 380 Gen10; HPE SimpliVity 2600; HPE SimpliVity 380 Gen10 G; HPE SimpliVity 325; HPE SimpliVity 380...
HPESBHF04069 rev.4 - HPE ProLiant Servers, Apollo Products, Converged Systems, and Storage Products with Integrated Lights-Out 5 (iLO 5) or Integrated Lights-Out 4 (iLO 4), Remote Disclosure of Information
Potential Security Impact: Remote: Disclosure of Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Integrated Lights-Out 5 iLO 5 for HPE Gen10 Servers - Prior to v2.31 HPE Integrated Lights-Out 4 iLO 4 - Prior to v2.76 HPE ConvergedSystem 700 CS700 - Varies, based on...
HPESBHF04056 rev.2 - HPE Servers with Intel Processors, Local escalation of Privilege, Denial of Service
Potential Security Impact: Local: Denial of Service DoS, Escalation of Privilege SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant DL120 Gen10 Server Prior to System ROM v2.40 HPE ProLiant DL160 Gen10 Server Prior to System ROM v2.40 HPE ProLiant DL180 Gen10 Server Prio...
CVE-2018-7101
A potential remote denial of service security vulnerability has been identified in HPE Integrated Lights Out 4 prior to v2.60 and iLO 5 for Gen 10 servers prior to v1.30...