CVE-2021-29207
Published May 25, 2021
Last updated 3 years ago
Overview
- Description
- A remote xss vulnerability was discovered in HPE Integrated Lights-Out 4 (iLO 4); HPE SimpliVity 380 Gen9; HPE Integrated Lights-Out 5 (iLO 5) for HPE Gen10 Servers; HPE SimpliVity 380 Gen10; HPE SimpliVity 2600; HPE SimpliVity 380 Gen10 G; HPE SimpliVity 325; HPE SimpliVity 380 Gen10 H version(s): Prior to version 2.78.
- Source
- security-alert@hpe.com
- NVD status
- Analyzed
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 4.8
- Impact score
- 2.7
- Exploitability score
- 1.7
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
- Severity
- MEDIUM
CVSS 2.0
- Type
- Primary
- Base score
- 3.5
- Impact score
- 2.9
- Exploitability score
- 6.8
- Vector string
- AV:N/AC:M/Au:S/C:N/I:P/A:N
Weaknesses
- nvd@nist.gov
- CWE-79
Social media
- Hype score
- Not currently trending
Configurations
[ { "nodes": [ { "negate": false, "cpeMatch": [ { "criteria": "cpe:2.3:o:hp:integrated_lights-out_4:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4E25CDBB-3C9D-4AAB-BA21-0346546AA369", "versionEndExcluding": "2.78" } ], "operator": "OR" }, { "negate": false, "cpeMatch": [ { "criteria": "cpe:2.3:h:hp:simplivity_380_gen9:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "F05331F2-DF6B-4CD3-9BA4-B97A34746509" } ], "operator": "OR" } ], "operator": "AND" }, { "nodes": [ { "negate": false, "cpeMatch": [ { "criteria": "cpe:2.3:o:hp:integrated_lights-out_5:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AD145EB4-A7F3-4A6D-A782-080507068D45", "versionEndExcluding": "2.44" } ], "operator": "OR" }, { "negate": false, "cpeMatch": [ { "criteria": "cpe:2.3:h:hp:proliant_bl460c_gen10_server_blade:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "03E00679-A2A7-4A51-9764-462BF479F423" }, { "criteria": "cpe:2.3:h:hp:proliant_dl120_gen10_server:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "B553E44A-A209-49CA-A914-CC1FE51D90D8" }, { "criteria": "cpe:2.3:h:hp:proliant_dl160_gen10_server:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "666AAAE5-83AB-4018-891D-2FC69AE6AD65" }, { "criteria": "cpe:2.3:h:hp:proliant_dl180_gen10_server:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "5DD32E61-4FFE-4ECF-9582-B96D1513C706" }, { "criteria": "cpe:2.3:h:hp:proliant_dl20_gen10_server:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "3BDF28CD-B01A-4C31-B62A-0472AD96D255" }, { "criteria": "cpe:2.3:h:hp:proliant_dl325_gen10_plus_server:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "FB5F7BC4-EAA0-47EB-A66A-B5BC60620E1F" }, { "criteria": "cpe:2.3:h:hp:proliant_dl325_gen10_server:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "58196CA6-BA67-4361-8056-B52B1A323E5D" }, { "criteria": "cpe:2.3:h:hp:proliant_dl360_gen10_server:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "F5FC76C8-44FC-4BCC-95C1-0717126BBE2A" }, { "criteria": "cpe:2.3:h:hp:proliant_dl380_gen10_server:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "BFD8AB8C-D5BA-4312-9E7A-48ECB09F3C16" }, { "criteria": "cpe:2.3:h:hp:proliant_dl385_gen10_plus_server:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "CBF5E039-BBBF-42A4-8F57-CB2B7E65D763" }, { "criteria": "cpe:2.3:h:hp:proliant_dl385_gen10_server:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "306B6EC0-C471-48B6-858C-93A4A6CB976D" }, { "criteria": "cpe:2.3:h:hp:proliant_dl560_gen10_server:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "6A16D30B-D064-4EEC-9628-7B64B63CE2CA" }, { "criteria": "cpe:2.3:h:hp:proliant_dl580_gen10_server:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "A367F8FE-8500-4512-831A-408BB0772586" }, { "criteria": "cpe:2.3:h:hp:proliant_ml110_gen10_server:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "358CD445-B506-4EE9-A282-76A790EA4583" }, { "criteria": "cpe:2.3:h:hp:proliant_ml30_gen10_server:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "2D857745-3DBE-4B0A-ACE3-0159EB3D0121" }, { "criteria": "cpe:2.3:h:hp:proliant_ml350_gen10_server:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "C9DB2958-DDCD-4ACA-B9C1-F7914622E36B" }, { "criteria": "cpe:2.3:h:hp:proliant_xl170r_gen10_server:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "F8A0F022-C271-4DB6-A12E-1A2357C0BFE9" }, { "criteria": "cpe:2.3:h:hp:proliant_xl190r_gen10_server:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "29DEE638-BD6B-4B70-ABEE-AFD8FDA99F45" }, { "criteria": "cpe:2.3:h:hp:proliant_xl230k_gen10_server:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "C7B1F484-2258-4326-AEFA-725BD8EFE6CD" }, { "criteria": "cpe:2.3:h:hp:proliant_xl270d_gen10_server:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "00D87480-CB71-4BB0-A034-41B3AA9F10A4" }, { "criteria": "cpe:2.3:h:hp:proliant_xl450_gen10_server:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "81B8CA7A-F115-4932-A932-F61180E79A72" }, { "criteria": "cpe:2.3:h:hp:simplivity_2600:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "2A13A066-1BC1-43D3-BBCC-499F1C1C864A" }, { "criteria": "cpe:2.3:h:hp:simplivity_325:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "EE4D8959-5623-4211-BE1B-80E6557D61F2" }, { "criteria": "cpe:2.3:h:hp:simplivity_380_gen10:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "DFA60F7D-DD77-4DED-B13B-C59025FCF3A2" }, { "criteria": "cpe:2.3:h:hp:simplivity_380_gen10_g:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "C077CA8B-F758-4D35-BFBA-9350586BBB91" }, { "criteria": "cpe:2.3:h:hp:simplivity_380_gen10_h:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "2D2DAFA4-2B9B-455D-9ABD-28D3E36859F0" } ], "operator": "OR" } ], "operator": "AND" } ]