A remote Cross-Site Scripting in HPE iLO 5 Web User Interface vulnerability was identified in HPE Integrated Lights-Out 5 (iLO 5) for Gen10 ProLiant Servers earlier than version v1.40.
References
Configurations
Configuration 1 (hide)
AND |
|
History
21 Nov 2024, 04:11
Type | Values Removed | Values Added |
---|---|---|
References | () https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03907en_us - Vendor Advisory | |
References | () https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03917en_us - |
Information
Published : 2019-04-09 19:29
Updated : 2024-11-21 04:11
NVD link : CVE-2018-7117
Mitre link : CVE-2018-7117
CVE.ORG link : CVE-2018-7117
JSON object : View
Products Affected
hp
- proliant_xl190r_gen10
- proliant_microserver_gen10
- proliant_dl360_gen10
- proliant_xl230k_gen10
- proliant_bl460c_gen10
- proliant_dl560_gen10
- integrated_lights-out_5_firmware
- proliant_ml350_gen10
- proliant_xl170r_gen10
- proliant_dl385_gen10
- proliant_dl580_gen10
- proliant_dl180_gen10
- proliant_ml110_gen10
- proliant_dl20_gen10
- proliant_dl380_gen10
- proliant_xl450_gen10
- proliant_dl160_gen10
- proliant_dl325_gen10
- proliant_dl120_gen10
- proliant_ml30_gen10
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')