Vulnerabilities > HP > Integrated Lights OUT 4 Firmware
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2016-09-08 | CVE-2016-4375 | Security vulnerability in HP products Multiple unspecified vulnerabilities in HPE Integrated Lights-Out 3 (aka iLO 3) firmware before 1.88, Integrated Lights-Out 4 (aka iLO 4) firmware before 2.44, and Integrated Lights-Out 4 (aka iLO 4) mRCA firmware before 2.32 allow remote attackers to obtain sensitive information, modify data, or cause a denial of service via unknown vectors. | 7.5 |
2015-09-30 | CVE-2015-5435 | Remote Denial of Service vulnerability in HP products Unspecified vulnerability in HP Integrated Lights-Out (iLO) firmware 3 before 1.85 and 4 before 2.22 allows remote authenticated users to cause a denial of service via unknown vectors. | 4.0 |
2015-03-31 | CVE-2015-2106 | Security vulnerability in HP products Unspecified vulnerability in HP Integrated Lights-Out (iLO) firmware 2 before 2.27, 3 before 1.82, and 4 before 2.10 allows remote attackers to bypass intended access restrictions or cause a denial of service via unknown vectors. | 6.4 |
2015-03-31 | CVE-2014-7876 | Remote Code Execution vulnerability in HP products Unspecified vulnerability in HP Integrated Lights-Out (iLO) firmware 2 before 2.27 and 4 before 2.03 and iLO Chassis Management (CM) firmware before 1.30 allows remote attackers to gain privileges, execute arbitrary code, or cause a denial of service via unknown vectors. | 10.0 |
2013-06-14 | CVE-2013-2338 | Remote Unauthorized Access vulnerability in HP products Unspecified vulnerability on HP Integrated Lights-Out 3 (aka iLO3) cards with firmware before 1.57 and 4 (aka iLO4) cards with firmware before 1.22, when Single-Sign-On (SSO) is used, allows remote attackers to execute arbitrary code via unknown vectors. | 10.0 |
2012-11-29 | CVE-2012-3271 | Information Disclosure vulnerability in HP products Unspecified vulnerability on the HP Integrated Lights-Out 3 (aka iLO3) with firmware before 1.50 and Integrated Lights-Out 4 (aka iLO4) with firmware before 1.13 allows remote attackers to obtain sensitive information via unknown vectors. | 9.3 |