Lucene search
K

466 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:55 a.m.7 views

CVE-2022-23701

A potential remote host header injection security vulnerability has been identified in HPE Integrated Lights-Out 4 iLO 4 firmware versions: Prior to 2.60. This vulnerability could be remotely exploited to allow an attacker to supply invalid input to the iLO 4 webserver, causing it to respond with...

5.3CVSS7.4AI score0.00675EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:54 a.m.6 views

CVE-2022-23704

A potential security vulnerability has been identified in Integrated Lights-Out 4 iLO 4. The vulnerability could allow remote Denial of Service. The vulnerability is resolved in Integrated Lights-Out 4 iLO 4 2.80 and later...

7.5CVSS7.1AI score0.01818EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.4 views

HP Integrated Lights-Out Improper Neutralization of Input During Web Page Generation (CVE-2021-29201)

"A remote xss vulnerability was discovered in HPE Integrated Lights-Out 4 iLO 4 %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504414; scriptversion"1.1"; scriptsetattributeattribute:"pluginmodificationdate", value:"2025/11/13"; scriptcveid"CVE-2021-29201";...

4.8CVSS5.3AI score0.0069EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.5 views

HP Integrated Lights-Out Information Disclosure (CVE-2017-12543)

A remote disclosure of information vulnerability in Moonshot Remote Console Administrator Prior to 2.50, iLO4 prior to v2.53, iLO3 prior to v1.89 and iLO2 prior to v2.30 was found. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more informatio...

6.5CVSS6.6AI score0.01475EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.3 views

HP Integrated Lights-Out Denial of Service (CVE-2018-7093)

A security vulnerability in HPE Integrated Lights-Out 3 prior to v1.90, iLO 4 prior to v2.60, iLO 5 prior to v1.30, Moonshot Chassis Manager firmware prior to v1.58, and Moonshot Component Pack prior to v2.55 could be remotely exploited to create a denial of service. This plugin only works with...

8.6CVSS7.8AI score0.03451EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.4 views

HP Integrated Lights-Out Remote Code Execution (CVE-2018-7078)

A remote code execution was identified in HPE Integrated Lights-Out 4 iLO 4 earlier than version v2.60 and HPE Integrated Lights-Out 5 iLO 5 earlier than version v1.30. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information...

9CVSS8AI score0.0681EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.3 views

HP Integrated Lights-Out Denial of Service (CVE-2015-5435)

Unspecified vulnerability in HP Integrated Lights-Out iLO firmware 3 before 1.85 and 4 before 2.22 allows remote authenticated users to cause a denial of service via unknown vectors. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more...

4CVSS5.5AI score0.02376EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.4 views

HP Integrated Lights-Out Improper Neutralization of Input During Web Page Generation (CVE-2021-29208)

"A remote dom xss, crlf injection vulnerability was discovered in HPE Integrated Lights-Out 4 iLO 4 %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504425; scriptversion"1.1"; scriptsetattributeattribute:"pluginmodificationdate", value:"2025/11/13";...

4.8CVSS5.4AI score0.00507EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.3 views

HP Integrated Lights-Out Improper Input Validation (CVE-2022-28631)

A potential arbitrary code execution and a denial of service DoS vulnerability within an isolated process were discovered in HPE Integrated Lights-Out 5 iLO 5 firmware versions: Prior to 2.71. An unprivileged user could exploit this vulnerability in an adjacent network to potentially execute...

8.8CVSS8.7AI score0.00403EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.4 views

HP Integrated Lights-Out Improper Neutralization of Input During Web Page Generation (CVE-2021-29205)

"A remote xss vulnerability was discovered in HPE Integrated Lights-Out 4 iLO 4 %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504417; scriptversion"1.1"; scriptsetattributeattribute:"pluginmodificationdate", value:"2025/11/13"; scriptcveid"CVE-2021-29205";...

4.8CVSS5.3AI score0.00653EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.3 views

HP Integrated Lights-Out Improper Input Validation (CVE-2016-4375)

Multiple unspecified vulnerabilities in HPE Integrated Lights-Out 3 aka iLO 3 firmware before 1.88, Integrated Lights-Out 4 aka iLO 4 firmware before 2.44, and Integrated Lights-Out 4 aka iLO 4 mRCA firmware before 2.32 allow remote attackers to obtain sensitive information, modify data, or cause...

9.8CVSS8.5AI score0.02998EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.2 views

HP Integrated Lights-Out Improper Neutralization of Input During Web Page Generation (CVE-2021-29207)

"A remote xss vulnerability was discovered in HPE Integrated Lights-Out 4 iLO 4 %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504392; scriptversion"1.1"; scriptsetattributeattribute:"pluginmodificationdate", value:"2025/11/13"; scriptcveid"CVE-2021-29207";...

4.8CVSS5.3AI score0.00653EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.4 views

HP Integrated Lights-Out Buffer Copy without Checking Size of Input (CVE-2021-29202)

"A local buffer overflow vulnerability was discovered in HPE Integrated Lights-Out 4 iLO 4 %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504415; scriptversion"1.1"; scriptsetattributeattribute:"pluginmodificationdate", value:"2025/11/13";...

6.7CVSS6.8AI score0.00283EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.2 views

HP Integrated Lights-Out Improper Input Validation (CVE-2022-28628)

A local arbitrary code execution vulnerability was discovered in HPE Integrated Lights-Out 5 iLO 5 firmware versions: Prior to 2.71. An unprivileged user could locally exploit this vulnerability to execute arbitrary code resulting in a complete loss of confidentiality, integrity, and availability...

8.4CVSS8.4AI score0.00218EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.7 views

HP Integrated Lights-Out Denial of Service (CVE-2014-2601)

The server in HP Integrated Lights-Out 2 aka iLO 2 2.23 and earlier allows remote attackers to cause a denial of service via crafted HTTPS traffic, as demonstrated by traffic from a CVE-2014-0160 vulnerability-assessment tool. This plugin only works with Tenable.ot. Please visit...

7.8CVSS7.2AI score0.99999EPSS
Exploits87References5
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.1 views

HP Integrated Lights-Out Improper Neutralization of Input During Web Page Generation (CVE-2021-46846)

Cross Site Scripting vulnerability in Hewlett Packard Enterprise Integrated Lights-Out 5. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504393;...

6.4CVSS6.1AI score0.00466EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.4 views

HP Integrated Lights-Out Cryptographic Issues (CVE-2016-4379)

The TLS implementation in HPE Integrated Lights-Out 3 aka iLO3 firmware before 1.88 does not properly use a MAC protection mechanism in conjunction with CBC padding, which allows remote attackers to obtain sensitive information via a padding-oracle attack, aka a Vaudenay attack. This plugin only...

4.3CVSS4.9AI score0.01647EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.2 views

HP Integrated Lights-Out Improper Access Control (CVE-2017-12542)

A authentication bypass and execution of code vulnerability in HPE Integrated Lights-out 4 iLO 4 version prior to 2.53 was found. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc...

10CVSS8.6AI score0.99335EPSS
Exploits9References5
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.3 views

HP Integrated Lights-Out Improper Neutralization of Input During Web Page Generation (CVE-2021-29209)

"A remote dom xss, crlf injection vulnerability was discovered in HPE Integrated Lights-Out 4 iLO 4 %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504390; scriptversion"1.1"; scriptsetattributeattribute:"pluginmodificationdate", value:"2025/11/13";...

4.8CVSS5.4AI score0.00507EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.3 views

HP Integrated Lights-Out Improper Input Validation (CVE-2017-8979)

Security vulnerabilities in the HPE Integrated Lights-Out 2 iLO 2 firmware could be exploited remotely to allow authentication bypass, code execution, and denial of service. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information...

9.8CVSS8.4AI score0.04913EPSS
Exploits0References3
Rows per page
Query Builder