Vulnerability Details CVE-2018-7117
A remote Cross-Site Scripting in HPE iLO 5 Web User Interface vulnerability was identified in HPE Integrated Lights-Out 5 (iLO 5) for Gen10 ProLiant Servers earlier than version v1.40.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.019
EPSS Ranking 82.5%
CVSS Severity
CVSS v3 Score 6.1
CVSS v2 Score 4.3
References
- https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03907en_us
- https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03917en_us
- https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03907en_us
- https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03917en_us
Products affected by CVE-2018-7117
-
cpe:2.3:h:hp:proliant_bl460c_gen10:-
-
cpe:2.3:h:hp:proliant_dl120_gen10:-
-
cpe:2.3:h:hp:proliant_dl160_gen10:-
-
cpe:2.3:h:hp:proliant_dl180_gen10:-
-
cpe:2.3:h:hp:proliant_dl20_gen10:-
-
cpe:2.3:h:hp:proliant_dl325_gen10:-
-
cpe:2.3:h:hp:proliant_dl360_gen10:-
-
cpe:2.3:h:hp:proliant_dl380_gen10:-
-
cpe:2.3:h:hp:proliant_dl385_gen10:-
-
cpe:2.3:h:hp:proliant_dl560_gen10:-
-
cpe:2.3:h:hp:proliant_dl580_gen10:-
-
cpe:2.3:h:hp:proliant_microserver_gen10:-
-
cpe:2.3:h:hp:proliant_ml110_gen10:-
-
cpe:2.3:h:hp:proliant_ml30_gen10:-
-
cpe:2.3:h:hp:proliant_ml350_gen10:-
-
cpe:2.3:h:hp:proliant_xl170r_gen10:-
-
cpe:2.3:h:hp:proliant_xl190r_gen10:-
-
cpe:2.3:h:hp:proliant_xl230k_gen10:-
-
cpe:2.3:h:hp:proliant_xl450_gen10:-
-
cpe:2.3:o:hp:integrated_lights-out_5_firmware:1.30
-
cpe:2.3:o:hp:integrated_lights-out_5_firmware:1.37