Hp Integrated Lights-out 3 Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Hp Integrated Lights-out 3 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (12)
CVE-2013-2338 — CVSS 10.0 (critical): Unspecified vulnerability on HP Integrated Lights-Out 3 (aka iLO3) cards with firmware before 1.57 and 4 (aka iLO4) cards with firmware…
CVE-2012-3271 — CVSS 9.3 (critical): Unspecified vulnerability on the HP Integrated Lights-Out 3 (aka iLO3) with firmware before 1.50 and Integrated Lights-Out 4 (aka iLO4)…
CVE-2017-8987 — CVSS 8.6 (high): A Unauthenticated Remote Denial of Service vulnerability was identified in HPE Integrated Lights-Out 3 (iLO 3) version v1.88 only. The…
CVE-2018-7093 — CVSS 8.6 (high): A security vulnerability in HPE Integrated Lights-Out 3 prior to v1.90, iLO 4 prior to v2.60, iLO 5 prior to v1.30, Moonshot Chassis…
CVE-2018-7105 — CVSS 7.2 (high): A security vulnerability in HPE Integrated Lights-Out 5 (iLO 5) for HPE Gen10 Servers prior to v1.35, HPE Integrated Lights-Out 4 (iLO 4)…
CVE-2017-12543 — CVSS 6.5 (medium): A remote disclosure of information vulnerability in Moonshot Remote Console Administrator Prior to 2.50, iLO4 prior to v2.53, iLO3 prior to…
CVE-2015-2106 — CVSS 6.4 (medium): Unspecified vulnerability in HP Integrated Lights-Out (iLO) firmware 2 before 2.27, 3 before 1.82, and 4 before 2.10 allows remote…
CVE-2016-4406 — CVSS 6.1 (medium): A remote cross site scripting vulnerability was identified in HPE iLO 3 all version prior to v1.88 and HPE iLO 4 all versions prior to…
CVE-2018-7112 — CVSS 5.5 (medium): The HPE-provided Windows firmware installer for certain Gen9, Gen8, G7,and G6 HPE servers allows local disclosure of privileged…
CVE-2015-5435 — CVSS 4.0 (medium): Unspecified vulnerability in HP Integrated Lights-Out (iLO) firmware 3 before 1.85 and 4 before 2.22 allows remote authenticated users to…
CVE-2016-4379 — CVSS 3.7 (low): The TLS implementation in HPE Integrated Lights-Out 3 (aka iLO3) firmware before 1.88 does not properly use a MAC protection mechanism in…