31 matches found
EUVD-2021-13378
Malware in sbrugna...
EUVD-2021-13381
Malware in sbrugna...
EUVD-2021-15859
Malware in sbrugna...
CVE-2021-29220
Multiple buffer overflow security vulnerabilities have been identified in HPE iLO Amplifier Pack versions: Prior to 2.12. These vulnerabilities could be exploited by a highly privileged user to remotely execute code that could lead to a loss of confidentiality, integrity, and availability. HPE ha...
CVE-2021-29212
A remote unauthenticated directory traversal security vulnerability has been identified in HPE iLO Amplifier Pack versions 1.80, 1.81, 1.90 and 1.95. The vulnerability could be remotely exploited to allow an unauthenticated user to run arbitrary code leading complete impact to confidentiality,...
CVE-2021-26583
A potential security vulnerability was identified in HPE iLO Amplifier Pack. The vulnerabilities could be remotely exploited to allow remote code execution...
CVE-2020-7203
A potential security vulnerability has been identified in HPE iLO Amplifier Pack server version 1.70. The vulnerability could be exploited to allow remote code execution...
The vulnerability of the iLO Amplifier Pack software’s automatic recovery function, related to reading data beyond the buffer in memory, allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the iLO Amplifier Pack software for automatic restoration of factory settings involves reading data beyond the buffer in memory. Exploiting this vulnerability can allow a malicious actor to compromise the confidentiality, integrity, and accessibility of the protected...
CVE-2021-29220
Multiple buffer overflow security vulnerabilities have been identified in HPE iLO Amplifier Pack versions: Prior to 2.12. These vulnerabilities could be exploited by a highly privileged user to remotely execute code that could lead to a loss of confidentiality, integrity, and availability. HPE ha...
CVE-2021-29220
Multiple buffer overflow security vulnerabilities have been identified in HPE iLO Amplifier Pack versions: Prior to 2.12. These vulnerabilities could be exploited by a highly privileged user to remotely execute code that could lead to a loss of confidentiality, integrity, and availability. HPE ha...
Buffer overflow
Multiple buffer overflow security vulnerabilities have been identified in HPE iLO Amplifier Pack versions: Prior to 2.12. These vulnerabilities could be exploited by a highly privileged user to remotely execute code that could lead to a loss of confidentiality, integrity, and availability. HPE ha...
CVE-2021-29220
CVE-2021-29220 affects HPE iLO Amplifier Pack prior to version 2.12. The issue is described as multiple buffer overflow vulnerabilities that could allow a highly privileged remote attacker to execute code, leading to loss of confidentiality, integrity, and availability. Remediation provided by HP...
CVE-2021-29220
Multiple buffer overflow security vulnerabilities have been identified in HPE iLO Amplifier Pack versions: Prior to 2.12. These vulnerabilities could be exploited by a highly privileged user to remotely execute code that could lead to a loss of confidentiality, integrity, and availability. HPE ha...
PT-2022-11: Remote Buffer Overflow in HPE iLO Amplifier Pack
The vulnerability was identified in HPE iLO Amplifier Pack versions prior to 2.12. These vulnerabilities could be exploited by a highly privileged user to remotely execute code that could lead to a loss of confidentiality, integrity, and availability. Vulnerability status: Confirmed by vendor Dat...
Hewlett Packard Enterprise iLO Amplifier Pack backup Directory Traversal Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Hewlett Packard Enterprise iLO Amplifier Pack. Authentication is not required to exploit this vulnerability. The specific flaw exists within the backup endpoint. The issue results from the lack of...
CVE-2021-29212
A remote unauthenticated directory traversal security vulnerability has been identified in HPE iLO Amplifier Pack versions 1.80, 1.81, 1.90 and 1.95. The vulnerability could be remotely exploited to allow an unauthenticated user to run arbitrary code leading complete impact to confidentiality,...
CVE-2021-29212
A remote unauthenticated directory traversal security vulnerability has been identified in HPE iLO Amplifier Pack versions 1.80, 1.81, 1.90 and 1.95. The vulnerability could be remotely exploited to allow an unauthenticated user to run arbitrary code leading complete impact to confidentiality,...
CVE-2021-29212
A remote unauthenticated directory traversal security vulnerability has been identified in HPE iLO Amplifier Pack versions 1.80, 1.81, 1.90 and 1.95. The vulnerability could be remotely exploited to allow an unauthenticated user to run arbitrary code leading complete impact to confidentiality,...
CVE-2021-29212
CVE-2021-29212 affects HPE iLO Amplifier Pack on versions 1.80/1.81/1.90/1.95. It describes a remote unauthenticated directory traversal that enables arbitrary code execution with root context via the backup endpoint due to improper path validation. ZDI notes no auth required; a fix is available ...
Vulnerability fixed in HPE iLO
HPE has fixed a vulnerability in iLO Amplifier Pack. HPE iLO Amplifier Pack is an applicance that allows HPE iLO systems to be be managed. The vulnerability allows a malicious party to opportunity to execute arbitrary code on the HPE iLO Amplifier Pack. HPE recommends that after updating the HPE...