55 matches found
EUVD-2019-3638
Malware in sbrugna...
EUVD-2021-15845
Malware in sbrugna...
EUVD-2018-18821
Malware in sbrugna...
CVE-2021-29210
A remote dom xss, crlf injection vulnerability was discovered in HPE Integrated Lights-Out 4 iLO 4; HPE SimpliVity 380 Gen9; HPE Integrated Lights-Out 5 iLO 5 for HPE Gen10 Servers; HPE SimpliVity 380 Gen10; HPE SimpliVity 2600; HPE SimpliVity 380 Gen10 G; HPE SimpliVity 325; HPE SimpliVity 380...
CVE-2022-23704
A potential security vulnerability has been identified in Integrated Lights-Out 4 iLO 4. The vulnerability could allow remote Denial of Service. The vulnerability is resolved in Integrated Lights-Out 4 iLO 4 2.80 and later...
CVE-2022-23704
The CVE-2022-23704 entry concerns HPE Integrated Lights-Out 4 (iLO 4). The vulnerability could allow a remote Denial of Service and is addressed in iLO 4 versions 2.80 and later. Connected documents confirm this impact and the fixed version; no specific exploit details, affected subcomponents, or...
CVE-2022-23704
A potential security vulnerability has been identified in Integrated Lights-Out 4 iLO 4. The vulnerability could allow remote Denial of Service. The vulnerability is resolved in Integrated Lights-Out 4 iLO 4 2.80 and later...
Design/Logic Flaw
A potential remote host header injection security vulnerability has been identified in HPE Integrated Lights-Out 4 iLO 4 firmware versions: Prior to 2.60. This vulnerability could be remotely exploited to allow an attacker to supply invalid input to the iLO 4 webserver, causing it to respond with...
CVE-2022-23701
The CVE-2022-23701 entry concerns HPE Integrated Lights-Out 4 (iLO 4) firmware prior to 2.60, where a remote host header injection could cause the iLO 4 webserver to redirect to an attacker-controlled domain. This finding is corroborated by multiple sources (NVD, Red Hat, CVE List, CNNVD) in the ...
CVE-2021-29211
A remote xss vulnerability was discovered in HPE Integrated Lights-Out 4 iLO 4; HPE SimpliVity 380 Gen9; HPE Integrated Lights-Out 5 iLO 5 for HPE Gen10 Servers; HPE SimpliVity 380 Gen10; HPE SimpliVity 2600; HPE SimpliVity 380 Gen10 G; HPE SimpliVity 325; HPE SimpliVity 380 Gen10 H versions: Pri...
Remote file inclusion
A remote xss vulnerability was discovered in HPE Integrated Lights-Out 4 iLO 4; HPE SimpliVity 380 Gen9; HPE Integrated Lights-Out 5 iLO 5 for HPE Gen10 Servers; HPE SimpliVity 380 Gen10; HPE SimpliVity 2600; HPE SimpliVity 380 Gen10 G; HPE SimpliVity 325; HPE SimpliVity 380 Gen10 H versions: Pri...
Crlf injection
A remote dom xss, crlf injection vulnerability was discovered in HPE Integrated Lights-Out 4 iLO 4; HPE SimpliVity 380 Gen9; HPE Integrated Lights-Out 5 iLO 5 for HPE Gen10 Servers; HPE SimpliVity 380 Gen10; HPE SimpliVity 2600; HPE SimpliVity 380 Gen10 G; HPE SimpliVity 325; HPE SimpliVity 380...
CVE-2021-29209
A remote dom xss, crlf injection vulnerability was discovered in HPE Integrated Lights-Out 4 iLO 4; HPE SimpliVity 380 Gen9; HPE Integrated Lights-Out 5 iLO 5 for HPE Gen10 Servers; HPE SimpliVity 380 Gen10; HPE SimpliVity 2600; HPE SimpliVity 380 Gen10 G; HPE SimpliVity 325; HPE SimpliVity 380...
CVE-2021-29208
Summary: CVE-2021-29208 describes a remote DOM-based XSS and CRLF injection affecting multiple Hewlett Packard Enterprise products (notably iLO 4, iLO 5, and related SimpliVity models). The vulnerability arises from improper input handling in web page generation, enabling an attacker to craft pay...
CVE-2021-29204
A remote xss vulnerability was discovered in HPE Integrated Lights-Out 4 iLO 4; HPE SimpliVity 380 Gen9; HPE Integrated Lights-Out 5 iLO 5 for HPE Gen10 Servers; HPE SimpliVity 380 Gen10; HPE SimpliVity 2600; HPE SimpliVity 380 Gen10 G; HPE SimpliVity 325; HPE SimpliVity 380 Gen10 H versions: Pri...
Remote file inclusion
A remote xss vulnerability was discovered in HPE Integrated Lights-Out 4 iLO 4; HPE SimpliVity 380 Gen9; HPE Integrated Lights-Out 5 iLO 5 for HPE Gen10 Servers; HPE SimpliVity 380 Gen10; HPE SimpliVity 2600; HPE SimpliVity 380 Gen10 G; HPE SimpliVity 325; HPE SimpliVity 380 Gen10 H versions: Pri...
CVE-2021-29211
CVE-2021-29211 affects multiple HPE products, including HPE Integrated Lights-Out 4 (iLO 4), iLO 5 for Gen10 servers, and related SimpliVity offerings. The issue is a remote cross-site scripting (XSS) vulnerability caused by improper neutralization of input during web page generation. Affected ve...
CVE-2021-29207
CVE-2021-29207 affects Hewlett Packard Enterprise products with remote XSS in HPE Integrated Lights-Out 4 (iLO 4), iLO 5 for Gen10 servers, and various HPE SimpliVity platforms. The vulnerability is described as Improper Neutralization of Input During Web Page Generation (remote XSS). Affected ve...
CVE-2021-29207
A remote xss vulnerability was discovered in HPE Integrated Lights-Out 4 iLO 4; HPE SimpliVity 380 Gen9; HPE Integrated Lights-Out 5 iLO 5 for HPE Gen10 Servers; HPE SimpliVity 380 Gen10; HPE SimpliVity 2600; HPE SimpliVity 380 Gen10 G; HPE SimpliVity 325; HPE SimpliVity 380 Gen10 H versions: Pri...
CVE-2021-29206
CVE-2021-29206: A remote cross-site scripting (XSS) vulnerability affects HPE Integrated Lights-Out 4 (iLO 4), HPE SimpliVity 380 Gen9/Gen10 variants, iLO 5 for Gen10 servers, and related SimpliVity models. The root cause is improper input handling during web page generation, leading to potential...