Vulnerabilities > HP > Integrated Lights OUT 5 Firmware > 1.37

DATE CVE VULNERABILITY TITLE RISK
2022-12-12 CVE-2021-46846 Cross-site Scripting vulnerability in HP Integrated Lights-Out 5 Firmware 1.30/1.37/1.40
Cross Site Scripting vulnerability in Hewlett Packard Enterprise Integrated Lights-Out 5.
network
low complexity
hp CWE-79
6.1
6.1
2019-06-05 CVE-2019-11983 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in HP products
A remote buffer overflow vulnerability was identified in HPE Integrated Lights-Out 4 (iLO 4) earlier than v2.61b for Gen9 servers and Integrated Lights-Out 5 (iLO 5) for Gen10 Servers earlier than version v1.39.
network
high complexity
hp CWE-119
7.0
7.0
2019-06-05 CVE-2019-11982 Cross-site Scripting vulnerability in HP products
A remote cross site scripting vulnerability was identified in HPE Integrated Lights-Out 4 (iLO 4) earlier than v2.61b for Gen9 servers and Integrated Lights-Out 5 (iLO 5) for Gen10 Servers earlier than version v1.39.
network
high complexity
hp CWE-79
8.3
8.3
2019-04-09 CVE-2018-7117 Cross-site Scripting vulnerability in HP Integrated Lights-Out 5 Firmware 1.30/1.37
A remote Cross-Site Scripting in HPE iLO 5 Web User Interface vulnerability was identified in HPE Integrated Lights-Out 5 (iLO 5) for Gen10 ProLiant Servers earlier than version v1.40.
network
low complexity
hp CWE-79
6.1
6.1