Lucene search
HpeCVE-2021-46846HistoryDec 12, 2022 - 1:15 p.m.
CVE-2021-46846
2022-12-1213:15:11
CWE-79
hpe
web.nvd.nist.gov
34
cve
2021
46846
cross site scripting
hpe
ilo 5
vulnerability
CVSS3
6.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:L
EPSS
0.001
Percentile
23.8%
Cross Site Scripting vulnerability in Hewlett Packard Enterprise Integrated Lights-Out 5.
Affected configurations
Node
hp3par_service_processorMatch-
ORhpapollo_r2000_chassisMatch-
ORhpeapollo_2000_gen10_plus_systemMatch-
ORhpeapollo_4200_gen10_serverMatch-
ORhpeapollo_4510_gen10_systemMatch-
ORhpeapollo_6500_gen10_plus_systemMatch-
ORhpeintegrated_lights-out_5Match-
ORhpeproliant_bl460c_gen10_server_bladeMatch-
ORhpeproliant_dl120_gen10_serverMatch-
ORhpeproliant_dl160_gen10_serverMatch-
ORhpeproliant_dl180_gen10_serverMatch-
ORhpeproliant_dl20_gen10_serverMatch-
ORhpeproliant_dl325_gen10_plus_serverMatch-
ORhpeproliant_dl325_gen10_serverMatch-
ORhpeproliant_dl360_gen10_serverMatch-
ORhpeproliant_dl380_gen10_serverMatch-
ORhpeproliant_dl385_gen10_plus_serverMatch-
ORhpeproliant_dl385_gen10_serverMatch-
ORhpeproliant_dl560_gen10_serverMatch-
ORhpeproliant_dl580_gen10_serverMatch-
ORhpeproliant_dx385_gen10_plus_serverMatch-
ORhpeproliant_e910_server_bladeMatch-
ORhpeproliant_e910t_server_bladeMatch-
ORhpeproliant_m750_server_bladeMatch-
ORhpeproliant_microserver_gen10Match-
ORhpeproliant_microserver_gen10_plusMatch-
ORhpeproliant_ml110_gen10_serverMatch-
ORhpeproliant_ml30_gen10_serverMatch-
ORhpeproliant_ml350_gen10_serverMatch-
ORhpeproliant_xl170r_gen10_serverMatch-
ORhpeproliant_xl190r_gen10_serverMatch-
ORhpeproliant_xl220n_gen10_plus_serverMatch-
ORhpeproliant_xl230k_gen10_serverMatch-
ORhpeproliant_xl270d_gen10_serverMatch-
ORhpeproliant_xl290n_gen10_plus_serverMatch-
ORhpeproliant_xl450_gen10_serverMatch-
ORhpeproliant_xl645d_gen10_plus_serverMatch-
ORhpeproliant_xl675d_gen10_plus_serverMatch-
ORhpestorage_file_controllerMatch-
ORhpestoreeasy_1460_storageMatch-
ORhpestoreeasy_1560_storageMatch-
ORhpestoreeasy_1660_expanded_storageMatch-
ORhpestoreeasy_1660_storageMatch-
ORhpestoreeasy_1860_storageMatch-
hpintegrated_lights-out_5_firmwareRange<2.44
| Vendor | Product | Version | CPE |
|---|---|---|---|
| hp | 3par_service_processor | - | cpe:2.3:h:hp:3par_service_processor:-:*:*:*:*:*:*:* |
| hp | apollo_r2000_chassis | - | cpe:2.3:h:hp:apollo_r2000_chassis:-:*:*:*:*:*:*:* |
| hpe | apollo_2000_gen10_plus_system | - | cpe:2.3:h:hpe:apollo_2000_gen10_plus_system:-:*:*:*:*:*:*:* |
| hpe | apollo_4200_gen10_server | - | cpe:2.3:h:hpe:apollo_4200_gen10_server:-:*:*:*:*:*:*:* |
| hpe | apollo_4510_gen10_system | - | cpe:2.3:h:hpe:apollo_4510_gen10_system:-:*:*:*:*:*:*:* |
| hpe | apollo_6500_gen10_plus_system | - | cpe:2.3:h:hpe:apollo_6500_gen10_plus_system:-:*:*:*:*:*:*:* |
| hpe | integrated_lights-out_5 | - | cpe:2.3:h:hpe:integrated_lights-out_5:-:*:*:*:*:*:*:* |
| hpe | proliant_bl460c_gen10_server_blade | - | cpe:2.3:h:hpe:proliant_bl460c_gen10_server_blade:-:*:*:*:*:*:*:* |
| hpe | proliant_dl120_gen10_server | - | cpe:2.3:h:hpe:proliant_dl120_gen10_server:-:*:*:*:*:*:*:* |
| hpe | proliant_dl160_gen10_server | - | cpe:2.3:h:hpe:proliant_dl160_gen10_server:-:*:*:*:*:*:*:* |
CNA Affected
[
{
"defaultStatus": "affected",
"product": "HPE Integrated Lights-Out 5",
"vendor": "Hewlett Packard Enterprise (HPE)",
"versions": [
{
"status": "affected",
"version": "Prior to 2.44"
}
]
}
]Related
prion
prion
Cross site scripting
2022-12-12 13:15:00
nvd
nvd
CVE-2021-46846
2022-12-12 13:15:11
cvelist
cvelist
CVE-2021-46846
2022-11-03 16:06:09
CVSS3
6.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:L
EPSS
0.001
Percentile
23.8%
Related for CVE-2021-46846