Lucene search
+L

13 matches found

Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.6 views

HP Integrated Lights-Out Improper Restriction of Operations within the Bounds of a Memory Buffer (CVE-2019-11983)

A remote buffer overflow vulnerability was identified in HPE Integrated Lights-Out 4 iLO 4 earlier than v2.61b for Gen9 servers and Integrated Lights-Out 5 iLO 5 for Gen10 Servers earlier than version v1.39. This plugin only works with Tenable.ot. Please visit...

8.3CVSS7.7AI score0.01102EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.8 views

HP Integrated Lights-Out Improper Neutralization of Input During Web Page Generation (CVE-2021-29206)

"A remote xss vulnerability was discovered in HPE Integrated Lights-Out 4 iLO 4 %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504401; scriptversion"1.1"; scriptsetattributeattribute:"pluginmodificationdate", value:"2025/11/13"; scriptcveid"CVE-2021-29206";...

4.8CVSS5.3AI score0.00653EPSS
Exploits0References2
OSV
OSV
added 2022/02/24 10:15 p.m.4 views

CVE-2022-23701

A potential remote host header injection security vulnerability has been identified in HPE Integrated Lights-Out 4 iLO 4 firmware versions: Prior to 2.60. This vulnerability could be remotely exploited to allow an attacker to supply invalid input to the iLO 4 webserver, causing it to respond with...

5.3CVSS5.7AI score0.00685EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2021/05/25 3:15 p.m.3 views

CVE-2021-29208

A remote dom xss, crlf injection vulnerability was discovered in HPE Integrated Lights-Out 4 iLO 4; HPE SimpliVity 380 Gen9; HPE Integrated Lights-Out 5 iLO 5 for HPE Gen10 Servers; HPE SimpliVity 380 Gen10; HPE SimpliVity 2600; HPE SimpliVity 380 Gen10 G; HPE SimpliVity 325; HPE SimpliVity 380...

4.8CVSS5.3AI score0.00507EPSS
Exploits0References2
HPE Security Bulletins
HPE Security Bulletins
added 2021/05/20 12:0 a.m.4 views

HPESBHF04144 rev.1 - HPE StoreOnce Systems using HPE Integrated Lights-Out 4 (iLO 4), Multiple Remote and Local Vulnerabilities

Potential Security Impact: Local: Buffer Overflow; Remote: Cross-Site Scripting XSS, Carriage Return Line Feed CRLF Injection SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE StoreOnce 2700 8TB Backup - Prior to 3.18.20 HPE StoreOnce 2900 24TB Backup - Prior to 3.18.20 HPE...

7.6CVSS6.2AI score0.0069EPSS
Exploits0
CNNVD
CNNVD
added 2021/05/19 12:0 a.m.5 views

多款Hewlett Packard Enterprise产品跨站脚本漏洞

Hewlett Packard Enterprise Integrated Lights-Out 5 iLO 5, among others, is a product of Hewlett Packard Enterprise HPE in the U.S. Hewlett Packard Enterprise Integrated Lights-Out 5 is a remote control solution. Out 5 is a remote control solution. Hewlett Packard Enterprise HPE Orchestrator is a...

4.8CVSS5AI score0.00653EPSS
Exploits0References4
CNNVD
CNNVD
added 2021/05/19 12:0 a.m.6 views

多款Hewlett Packard Enterprise产品安全漏洞

Hewlett Packard Enterprise Integrated Lights-Out 4 iLO 4, etc. are products of Hewlett Packard Enterprise. Hewlett Packard Enterprise Integrated Lights-Out 4 is a remote control solution. Hewlett Packard Enterprise Integrated Lights-Out 5 iLO 5 is a remote control solution. Hewlett Packard...

6.7CVSS6.7AI score0.00283EPSS
Exploits0References4
HPE Security Bulletins
HPE Security Bulletins
added 2020/04/01 12:0 a.m.3 views

HPESBHF03986 rev.1 - HPE Superdome X servers with iLO4, Remote Code Execution and Authentication Bypass

Potential Security Impact: Remote: Authentication Bypass, Code Execution, Disclosure of Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Integrity Superdome X Server prior to 8.8.14 HPE Integrity Superdome X with BL920s Blades prior to 8.8.14 HPE Integrity Superdome...

10CVSS6.8AI score0.99335EPSS
Exploits9
CNVD
CNVD
added 2018/09/29 12:0 a.m.4 views

HPE Integrated Lights-Out 3, 4 and 5 Information Disclosure Vulnerabilities

HPE Integrated Lights-Out iLO 3, 4, and 5 are all embedded server management technologies from Hewlett Packard Enterprise HPE that monitor and maintain server operations, remotely control servers, and more through an integrated remote management port. An information disclosure vulnerability exist...

6.2AI score
Exploits0References1
OSV
OSV
added 2018/09/27 6:29 p.m.5 views

CVE-2018-7105

A security vulnerability in HPE Integrated Lights-Out 5 iLO 5 for HPE Gen10 Servers prior to v1.35, HPE Integrated Lights-Out 4 iLO 4 prior to v2.61, HPE Integrated Lights-Out 3 iLO 3 prior to v1.90 could be remotely exploited to execute arbitrary code leading to disclosure of information...

7.2CVSS6.1AI score0.04114EPSS
Exploits0References3
OSV
OSV
added 2018/08/06 8:29 p.m.6 views

CVE-2016-4406

A remote cross site scripting vulnerability was identified in HPE iLO 3 all version prior to v1.88 and HPE iLO 4 all versions prior to v2.44...

6.1CVSS5.3AI score0.02567EPSS
Exploits0References3
OSV
OSV
added 2018/02/15 10:29 p.m.4 views

CVE-2017-12542

A authentication bypass and execution of code vulnerability in HPE Integrated Lights-out 4 iLO 4 version prior to 2.53 was found...

10CVSS5.9AI score0.99335EPSS
Exploits9References4
OSV
OSV
added 2018/02/15 10:29 p.m.6 views

CVE-2017-12543

A remote disclosure of information vulnerability in Moonshot Remote Console Administrator Prior to 2.50, iLO4 prior to v2.53, iLO3 prior to v1.89 and iLO2 prior to v2.30 was found...

6.5CVSS5.8AI score0.01475EPSS
Exploits0References2
Rows per page
Query Builder