Описание
A remote cross site scripting vulnerability was identified in HPE Integrated Lights-Out 4 (iLO 4) earlier than v2.61b for Gen9 servers and Integrated Lights-Out 5 (iLO 5) for Gen10 Servers earlier than version v1.39.
Уязвимые конфигурации
Конфигурация 1Версия до 1.39 (включая)
Одновременно
cpe:2.3:o:hp:integrated_lights-out_5_firmware:*:*:*:*:*:*:*:*
Одно из
cpe:2.3:h:hp:proliant_bl460c_gen10:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:proliant_dl120_gen10:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:proliant_dl160_gen10:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:proliant_dl180_gen10:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:proliant_dl20_gen10:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:proliant_dl325_gen10:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:proliant_dl360_gen10:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:proliant_dl380_gen10:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:proliant_dl385_gen10:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:proliant_dl560_gen10:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:proliant_dl580_gen10:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:proliant_microserver_gen10:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:proliant_ml110_gen10:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:proliant_ml350_gen10:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:proliant_xl170r_gen10:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:proliant_xl190r_gen10:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:proliant_xl230k_gen10:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:proliant_xl450_gen10:-:*:*:*:*:*:*:*
Конфигурация 2Версия до 2.61b (включая)
Одновременно
cpe:2.3:o:hp:integrated_lights-out_4_firmware:*:*:*:*:*:*:*:*
Одно из
cpe:2.3:h:hp:proliant_bl460c_gen9:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:proliant_dl120_gen9:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:proliant_dl180_gen9:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:proliant_dl360_gen9:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:proliant_dl380_gen9:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:proliant_dl580_gen9:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:proliant_ml10_gen9:2:*:*:*:*:*:*:*
cpe:2.3:h:hp:proliant_ml110_gen9:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:proliant_ml150_gen9:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:proliant_ml30_gen9:2:*:*:*:*:*:*:*
cpe:2.3:h:hp:proliant_ml350_gen9:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:proliant_ws460c_gen9:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:proliant_xl170r_gen9:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:proliant_xl190r_gen9:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:proliant_xl230a_gen9:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:proliant_xl250a_gen9:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:proliant_xl730f_gen9:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:proliant_xl740f_gen9:-:*:*:*:*:*:*:*
cpe:2.3:h:hp:proliant_xl750f_gen9:-:*:*:*:*:*:*:*
EPSS
Процентиль: 69%
0.00603
Низкий
8.3 High
CVSS3
7.6 High
CVSS2
Дефекты
CWE-79
Связанные уязвимости
CVSS3: 8.3
github
больше 3 лет назад
A remote cross site scripting vulnerability was identified in HPE Integrated Lights-Out 4 (iLO 4) earlier than v2.61b for Gen9 servers and Integrated Lights-Out 5 (iLO 5) for Gen10 Servers earlier than version v1.39.
EPSS
Процентиль: 69%
0.00603
Низкий
8.3 High
CVSS3
7.6 High
CVSS2
Дефекты
CWE-79