3 matches found
CVE-2019-11982
A remote cross site scripting vulnerability was identified in HPE Integrated Lights-Out 4 iLO 4 earlier than v2.61b for Gen9 servers and Integrated Lights-Out 5 iLO 5 for Gen10 Servers earlier than version v1.39...
CVE-2019-11982
HPE Integrated Lights-Out (iLO) products are affected by CVE-2019-11982: an XSS in the web page generation due to improper input handling. A remote attacker can exploit this on iLO 4 Gen9 before v2.61b and iLO 5 Gen10 before v1.39. The underlying root cause is improper neutralization/validation o...
HPESBHF03917 rev.3 - HPE Integrated Lights-Out 4 (iLO 4), and HPE Integrated Lights-Out 5 (iLO 5), Multiple Remote Vulnerabilities
Potential Security Impact: Remote: Cross-Site Scripting XSS, Unauthorized Data Injection, Buffer Overflow SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Integrated Lights-Out 5 iLO 5 for HPE Gen10 Servers -Prior to 1.40a HPE Integrated Lights-Out 4 iLO 4 -Prior to 2.70...