threat
engine
.sh
Back
·
··:··
Home
/
Product
/
hpe integrated lights out 5 firmware
Product
hpe integrated lights out 5 firmware
26 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2023-50272
>= 2.63 and <= 3.00
A potential security vulnerability has been identified in HPE Integrated Lights-Out 5 (iLO 5) and Integrated Lights-Out 6 (iLO 6).
7.5
HIGH
CVE-2023-30911
< 2.98
HPE Integrated Lights-Out 5, and Integrated Lights-Out 6 using iLOrest may cause denial of service.
6.8
MEDIUM
CVE-2021-46846
< 2.44
Cross Site Scripting vulnerability in Hewlett Packard Enterprise Integrated Lights-Out 5.
6.4
MEDIUM
CVE-2022-28640
< 2.72
A potential local adjacent arbitrary code execution vulnerability that could potentially lead to a loss of confidentiality, integr
8.8
HIGH
CVE-2022-28639
< 2.72
A remote potential adjacent denial of service (DoS) and potential adjacent arbitrary code execution vulnerability that could poten
8.8
HIGH
CVE-2022-28638
< 2.72
An isolated local disclosure of information and potential isolated local arbitrary code execution vulnerability that could potenti
7.8
HIGH
CVE-2022-28637
< 2.72
A local Denial of Service (DoS) and local arbitrary code execution vulnerability that could potentially lead to a loss of confiden
7.8
HIGH
CVE-2022-28636
< 2.71
A potential local arbitrary code execution and a local denial of service (DoS) vulnerability within an isolated process were disco
7.4
HIGH
CVE-2022-28635
< 2.71
A potential local arbitrary code execution and a local denial of service (DoS) vulnerability within an isolated process were disco
7.4
HIGH
CVE-2022-28634
< 2.71
A local arbitrary code execution vulnerability was discovered in HPE Integrated Lights-Out 5 (iLO 5) firmware version(s): Prior to
6.7
MEDIUM
CVE-2022-28633
< 2.71
A local disclosure of sensitive information and a local unauthorized data modification vulnerability were discovered in HPE Integr
7.3
HIGH
CVE-2022-28632
< 2.71
A potential arbitrary code execution and a denial of service (DoS) vulnerability within an isolated process were discovered in HPE
8.8
HIGH
CVE-2022-28631
< 2.71
A potential arbitrary code execution and a denial of service (DoS) vulnerability within an isolated process were discovered in HPE
8.8
HIGH
CVE-2022-28630
< 2.71
A local arbitrary code execution vulnerability was discovered in HPE Integrated Lights-Out 5 (iLO 5) firmware version(s): Prior to
7.3
HIGH
CVE-2022-28629
< 2.71
A local arbitrary code execution vulnerability was discovered in HPE Integrated Lights-Out 5 (iLO 5) firmware version(s): Prior to
7.8
HIGH
CVE-2022-28628
< 2.71
A local arbitrary code execution vulnerability was discovered in HPE Integrated Lights-Out 5 (iLO 5) firmware version(s): Prior to
8.4
HIGH
CVE-2022-28627
< 2.71
A local arbitrary code execution vulnerability was discovered in HPE Integrated Lights-Out 5 (iLO 5) firmware version(s): Prior to
8.4
HIGH
CVE-2022-28626
< 2.71
A local arbitrary code execution vulnerability was discovered in HPE Integrated Lights-Out 5 (iLO 5) firmware version(s): Prior to
6.7
MEDIUM
CVE-2019-11983
<= 1.39
A remote buffer overflow vulnerability was identified in HPE Integrated Lights-Out 4 (iLO 4) earlier than v2.61b for Gen9 servers
7.0
HIGH
CVE-2019-11982
<= 1.39
A remote cross site scripting vulnerability was identified in HPE Integrated Lights-Out 4 (iLO 4) earlier than v2.61b for Gen9 ser
8.3
HIGH
CVE-2018-7117
< 1.40
A remote Cross-Site Scripting in HPE iLO 5 Web User Interface vulnerability was identified in HPE Integrated Lights-Out 5 (iLO 5)
6.1
MEDIUM
CVE-2018-7113
< 1.37
A security vulnerability in HPE Integrated Lights-Out 5 (iLO 5) prior to v1.37 could be locally exploited to bypass the security r
6.6
MEDIUM
CVE-2018-7105
< 1.35
A security vulnerability in HPE Integrated Lights-Out 5 (iLO 5) for HPE Gen10 Servers prior to v1.35, HPE Integrated Lights-Out 4
7.2
HIGH
CVE-2018-7101
< 1.30
A potential remote denial of service security vulnerability has been identified in HPE Integrated Lights Out 4 prior to v2.60 and
7.5
HIGH
CVE-2018-7093
< 1.30
A security vulnerability in HPE Integrated Lights-Out 3 prior to v1.90, iLO 4 prior to v2.60, iLO 5 prior to v1.30, Moonshot Chass
8.6
HIGH
CVE-2018-7078
< 1.30
A remote code execution was identified in HPE Integrated Lights-Out 4 (iLO 4) earlier than version v2.60 and HPE Integrated Lights
7.2
HIGH
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin