Hp Integrated Lights-out 4 Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Hp Integrated Lights-out 4 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (16)
CVE-2013-2338 — CVSS 10.0 (critical): Unspecified vulnerability on HP Integrated Lights-Out 3 (aka iLO3) cards with firmware before 1.57 and 4 (aka iLO4) cards with firmware…
CVE-2014-7876 — CVSS 10.0 (critical): Unspecified vulnerability in HP Integrated Lights-Out (iLO) firmware 2 before 2.27 and 4 before 2.03 and iLO Chassis Management (CM)…
CVE-2017-12542 — CVSS 10.0 (critical): A authentication bypass and execution of code vulnerability in HPE Integrated Lights-out 4 (iLO 4) version prior to 2.53 was found.
CVE-2012-3271 — CVSS 9.3 (critical): Unspecified vulnerability on the HP Integrated Lights-Out 3 (aka iLO3) with firmware before 1.50 and Integrated Lights-Out 4 (aka iLO4)…
CVE-2018-7093 — CVSS 8.6 (high): A security vulnerability in HPE Integrated Lights-Out 3 prior to v1.90, iLO 4 prior to v2.60, iLO 5 prior to v1.30, Moonshot Chassis…
CVE-2019-11982 — CVSS 8.3 (high): A remote cross site scripting vulnerability was identified in HPE Integrated Lights-Out 4 (iLO 4) earlier than v2.61b for Gen9 servers and…
CVE-2018-7101 — CVSS 7.5 (high): A potential remote denial of service security vulnerability has been identified in HPE Integrated Lights Out 4 prior to v2.60 and iLO 5 for…
CVE-2018-7105 — CVSS 7.2 (high): A security vulnerability in HPE Integrated Lights-Out 5 (iLO 5) for HPE Gen10 Servers prior to v1.35, HPE Integrated Lights-Out 4 (iLO 4)…
CVE-2018-7078 — CVSS 7.2 (high): A remote code execution was identified in HPE Integrated Lights-Out 4 (iLO 4) earlier than version v2.60 and HPE Integrated Lights-Out 5…
CVE-2019-11983 — CVSS 7.0 (high): A remote buffer overflow vulnerability was identified in HPE Integrated Lights-Out 4 (iLO 4) earlier than v2.61b for Gen9 servers and…
CVE-2017-12543 — CVSS 6.5 (medium): A remote disclosure of information vulnerability in Moonshot Remote Console Administrator Prior to 2.50, iLO4 prior to v2.53, iLO3 prior to…
CVE-2015-2106 — CVSS 6.4 (medium): Unspecified vulnerability in HP Integrated Lights-Out (iLO) firmware 2 before 2.27, 3 before 1.82, and 4 before 2.10 allows remote…
CVE-2016-4406 — CVSS 6.1 (medium): A remote cross site scripting vulnerability was identified in HPE iLO 3 all version prior to v1.88 and HPE iLO 4 all versions prior to…
CVE-2018-7112 — CVSS 5.5 (medium): The HPE-provided Windows firmware installer for certain Gen9, Gen8, G7,and G6 HPE servers allows local disclosure of privileged…
CVE-2015-5435 — CVSS 4.0 (medium): Unspecified vulnerability in HP Integrated Lights-Out (iLO) firmware 3 before 1.85 and 4 before 2.22 allows remote authenticated users to…