Описание
A remote Cross-Site Scripting in HPE iLO 5 Web User Interface vulnerability was identified in HPE Integrated Lights-Out 5 (iLO 5) for Gen10 ProLiant Servers earlier than version v1.40.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.40 (исключая)
Одновременно
cpe:2.3:o:hp:integrated_lights-out_5_firmware:*:*:*:*:*:*:*:*
Одно из
cpe:2.3:h:hp:proliant_bl460c_gen10:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:proliant_dl120_gen10:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:proliant_dl160_gen10:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:proliant_dl180_gen10:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:proliant_dl20_gen10:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:proliant_dl325_gen10:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:proliant_dl360_gen10:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:proliant_dl380_gen10:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:proliant_dl385_gen10:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:proliant_dl560_gen10:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:proliant_dl580_gen10:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:proliant_microserver_gen10:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:proliant_ml110_gen10:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:proliant_ml30_gen10:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:proliant_ml350_gen10:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:proliant_xl170r_gen10:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:proliant_xl190r_gen10:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:proliant_xl230k_gen10:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:proliant_xl450_gen10:-:*:*:*:*:*:*:*
EPSS
Процентиль: 76%
0.0099
Низкий
6.1 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-79
Связанные уязвимости
CVSS3: 6.1
github
больше 3 лет назад
A remote Cross-Site Scripting in HPE iLO 5 Web User Interface vulnerability was identified in HPE Integrated Lights-Out 5 (iLO 5) for Gen10 ProLiant Servers earlier than version v1.40.
EPSS
Процентиль: 76%
0.0099
Низкий
6.1 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-79