CVE-2021-29205

Summary

A remote xss vulnerability was discovered in HPE Integrated Lights-Out 4 (iLO 4); HPE SimpliVity 380 Gen9; HPE Integrated Lights-Out 5 (iLO 5) for HPE Gen10 Servers; HPE SimpliVity 380 Gen10; HPE SimpliVity 2600; HPE SimpliVity 380 Gen10 G; HPE SimpliVity 325; HPE SimpliVity 380 Gen10 H version(s): Prior to version 2.78.

Affected Software

VendorProductVersion RangeStatus
n/aHPE Integrated Lights-Out 4 (iLO 4) For HPE Gen9 servers; HPE Integrated Lights-Out 5 (iLO 5) for HPE Gen10 ServersPrior to HPE Integrated Lights-Out 4 (iLO 4) version 2.78affected
n/aHPE Integrated Lights-Out 4 (iLO 4) For HPE Gen9 servers; HPE Integrated Lights-Out 5 (iLO 5) for HPE Gen10 ServersPrior to HPE Integrated Lights-Out 5 (iLO 5) version 2.44affected
n/aHPE Integrated Lights-Out 4 (iLO 4) For HPE Gen9 servers; HPE Integrated Lights-Out 5 (iLO 5) for HPE Gen10 Serversunspecifiedaffected

Weaknesses

  • remote xss

ADP Enrichment

CVE Program Container

Additional References

References