Hp Integrated Lights-Out 5 Firmware vulnerabilities
9 known vulnerabilities affecting hp/integrated_lights-out_5_firmware.
Total CVEs
9
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH6MEDIUM3
Vulnerabilities
Page 1 of 1
CVE-2021-46846MEDIUMCVSS 6.1fixed in 2.442022-12-12
CVE-2021-46846 [MEDIUM] CWE-79 CVE-2021-46846: Cross Site Scripting vulnerability in Hewlett Packard Enterprise Integrated Lights-Out 5.
Cross Site Scripting vulnerability in Hewlett Packard Enterprise Integrated Lights-Out 5.
nvd
CVE-2019-11983HIGHCVSS 7.0≤ 1.392019-06-05
CVE-2019-11983 [HIGH] CWE-119 CVE-2019-11983: A remote buffer overflow vulnerability was identified in HPE Integrated Lights-Out 4 (iLO 4) earlier
A remote buffer overflow vulnerability was identified in HPE Integrated Lights-Out 4 (iLO 4) earlier than v2.61b for Gen9 servers and Integrated Lights-Out 5 (iLO 5) for Gen10 Servers earlier than version v1.39.
nvd
CVE-2019-11982HIGHCVSS 8.3≤ 1.392019-06-05
CVE-2019-11982 [HIGH] CWE-79 CVE-2019-11982: A remote cross site scripting vulnerability was identified in HPE Integrated Lights-Out 4 (iLO 4) ea
A remote cross site scripting vulnerability was identified in HPE Integrated Lights-Out 4 (iLO 4) earlier than v2.61b for Gen9 servers and Integrated Lights-Out 5 (iLO 5) for Gen10 Servers earlier than version v1.39.
nvd
CVE-2018-7117MEDIUMCVSS 6.1fixed in 1.402019-04-09
CVE-2018-7117 [MEDIUM] CWE-79 CVE-2018-7117: A remote Cross-Site Scripting in HPE iLO 5 Web User Interface vulnerability was identified in HPE In
A remote Cross-Site Scripting in HPE iLO 5 Web User Interface vulnerability was identified in HPE Integrated Lights-Out 5 (iLO 5) for Gen10 ProLiant Servers earlier than version v1.40.
nvd
CVE-2018-7113MEDIUMCVSS 6.6fixed in 1.372018-12-03
CVE-2018-7113 [MEDIUM] CVE-2018-7113: A security vulnerability in HPE Integrated Lights-Out 5 (iLO 5) prior to v1.37 could be locally expl
A security vulnerability in HPE Integrated Lights-Out 5 (iLO 5) prior to v1.37 could be locally exploited to bypass the security restrictions for firmware updates.
nvd
CVE-2018-7105HIGHCVSS 7.2fixed in 1.352018-09-27
CVE-2018-7105 [HIGH] CVE-2018-7105: A security vulnerability in HPE Integrated Lights-Out 5 (iLO 5) for HPE Gen10 Servers prior to v1.35
A security vulnerability in HPE Integrated Lights-Out 5 (iLO 5) for HPE Gen10 Servers prior to v1.35, HPE Integrated Lights-Out 4 (iLO 4) prior to v2.61, HPE Integrated Lights-Out 3 (iLO 3) prior to v1.90 could be remotely exploited to execute arbitrary code leading to disclosure of information.
nvd
CVE-2018-7101HIGHCVSS 7.5fixed in 1.302018-09-27
CVE-2018-7101 [HIGH] CVE-2018-7101: A potential remote denial of service security vulnerability has been identified in HPE Integrated Li
A potential remote denial of service security vulnerability has been identified in HPE Integrated Lights Out 4 prior to v2.60 and iLO 5 for Gen 10 servers prior to v1.30.
nvd
CVE-2018-7093HIGHCVSS 8.6fixed in 1.302018-08-14
CVE-2018-7093 [HIGH] CVE-2018-7093: A security vulnerability in HPE Integrated Lights-Out 3 prior to v1.90, iLO 4 prior to v2.60, iLO 5
A security vulnerability in HPE Integrated Lights-Out 3 prior to v1.90, iLO 4 prior to v2.60, iLO 5 prior to v1.30, Moonshot Chassis Manager firmware prior to v1.58, and Moonshot Component Pack prior to v2.55 could be remotely exploited to create a denial of service.
nvd
CVE-2018-7078HIGHCVSS 7.2fixed in 1.302018-08-06
CVE-2018-7078 [HIGH] CVE-2018-7078: A remote code execution was identified in HPE Integrated Lights-Out 4 (iLO 4) earlier than version v
A remote code execution was identified in HPE Integrated Lights-Out 4 (iLO 4) earlier than version v2.60 and HPE Integrated Lights-Out 5 (iLO 5) earlier than version v1.30.
nvd