2 matches found
CVE-2021-29208
A remote dom xss, crlf injection vulnerability was discovered in HPE Integrated Lights-Out 4 iLO 4; HPE SimpliVity 380 Gen9; HPE Integrated Lights-Out 5 iLO 5 for HPE Gen10 Servers; HPE SimpliVity 380 Gen10; HPE SimpliVity 2600; HPE SimpliVity 380 Gen10 G; HPE SimpliVity 325; HPE SimpliVity 380...
CVE-2021-29208
Summary: CVE-2021-29208 describes a remote DOM-based XSS and CRLF injection affecting multiple Hewlett Packard Enterprise products (notably iLO 4, iLO 5, and related SimpliVity models). The vulnerability arises from improper input handling in web page generation, enabling an attacker to craft pay...