HPE Proliant ML30 Gen10 Server
Approved changes feed: RSS · Atom
cpe:2.3:h:hpe:proliant_ml30_gen10_server:-:*:*:*:*:*:*:*
part: h version: - update: *
| Vendor | Hpe (8bc0c2a2-a9de-5f61-aa1f-0aa716beac6b) |
|---|---|
| Product | Proliant Ml30 Gen10 Server (7feab869-7441-5538-b581-b9c54ec976da) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2023-30911 |
not_vulnerable | 2026-06-03 14:51:54.159299 |
Details available
MEDIUM (6.8)
HPE Integrated Lights-Out 5, and Integrated Lights-Out 6 using iLOrest may cause denial of service.
Published: 2023-10-18T17:04:35.447Z
Updated: 2024-09-13T17:29:55.595Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-28640 |
not_vulnerable | 2026-06-03 14:46:55.125148 |
Details available
A potential local adjacent arbitrary code execution vulnerability that could potentially lead to a loss of confidentiality, integrity, and availability was discovered in HPE Integrated Lights-Out 5 (iLO 5) in Version: 2.71. Hewlett Packard Enterprise has provided updated firmware for HPE Integrated Lights-Out 5 (iLO 5) that addresses this security vulnerability.
Published: 2022-09-20T20:01:58.000Z
Updated: 2025-05-28T15:52:55.759Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-28639 |
not_vulnerable | 2026-06-03 14:46:55.123124 |
Details available
A remote potential adjacent denial of service (DoS) and potential adjacent arbitrary code execution vulnerability that could potentially lead to a loss of confidentiality, integrity, and availability were discovered in HPE Integrated Lights-Out 5 (iLO 5) in Version: 2.71. Hewlett Packard Enterprise has provided updated firmware for HPE Integrated Lights-Out 5 (iLO 5) that addresses these security vulnerabilities.
Published: 2022-09-20T20:06:05.000Z
Updated: 2025-05-29T13:21:32.356Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-28638 |
not_vulnerable | 2026-06-03 14:46:55.121066 |
Details available
An isolated local disclosure of information and potential isolated local arbitrary code execution vulnerability that could potentially lead to a loss of confidentiality, integrity, and availability were discovered in HPE Integrated Lights-Out 5 (iLO 5) in Version: 2.71. Hewlett Packard Enterprise has provided updated firmware for HPE Integrated Lights-Out 5 (iLO 5) that addresses these security vulnerabilities.
Published: 2022-09-20T20:04:47.000Z
Updated: 2025-05-29T13:22:13.009Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-28637 |
not_vulnerable | 2026-06-03 14:46:55.114082 |
Details available
A local Denial of Service (DoS) and local arbitrary code execution vulnerability that could potentially lead to a loss of confidentiality, integrity, and availability were discovered in HPE Integrated Lights-Out 5 (iLO 5) in Version: 2.71. Hewlett Packard Enterprise has provided updated firmware for HPE Integrated Lights-Out 5 (iLO 5) that addresses these security vulnerabilities.
Published: 2022-09-20T20:07:13.000Z
Updated: 2025-05-27T18:15:43.840Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-28636 |
not_vulnerable | 2026-06-03 14:46:55.044221 |
Details available
A potential local arbitrary code execution and a local denial of service (DoS) vulnerability within an isolated process were discovered in HPE Integrated Lights-Out 5 (iLO 5) firmware version(s): Prior to 2.71. An unprivileged user could locally exploit this vulnerability to potentially execute arbitrary code in an isolated process resulting in a complete loss of confidentiality, integrity, and availability within that process. In addition, an unprivileged user could exploit a denial of service (DoS) vulnerability in an isolated process resulting in a complete loss of availability within that process. A successful attack depends on conditions beyond the attackers control. HPE has provided a firmware update to resolve this vulnerability in HPE Integrated Lights-Out 5 (iLO 5).
Published: 2022-08-11T17:17:47.000Z
Updated: 2024-08-03T05:56:16.445Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-28635 |
not_vulnerable | 2026-06-03 14:46:55.041698 |
Details available
A potential local arbitrary code execution and a local denial of service (DoS) vulnerability within an isolated process were discovered in HPE Integrated Lights-Out 5 (iLO 5) firmware version(s): Prior to 2.71. An unprivileged user could locally exploit this vulnerability to potentially execute arbitrary code in an isolated process resulting in a complete loss of confidentiality, integrity, and availability within that process. In addition, an unprivileged user could exploit a denial of service (DoS) vulnerability in an isolated process resulting in a complete loss of availability within that process. A successful attack depends on conditions beyond the attackers control. HPE has provided a firmware update to resolve this vulnerability in HPE Integrated Lights-Out 5 (iLO 5).
Published: 2022-08-11T17:18:00.000Z
Updated: 2024-08-03T05:56:16.091Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-28634 |
not_vulnerable | 2026-06-03 14:46:55.039835 |
Details available
A local arbitrary code execution vulnerability was discovered in HPE Integrated Lights-Out 5 (iLO 5) firmware version(s): Prior to 2.71. A highly privileged user could locally exploit this vulnerability to execute arbitrary code resulting in a complete loss of confidentiality, integrity, and availability. HPE has provided a firmware update to resolve this vulnerability in HPE Integrated Lights-Out 5 (iLO 5).
Published: 2022-08-11T17:18:25.000Z
Updated: 2024-08-03T05:56:16.229Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-28633 |
not_vulnerable | 2026-06-03 14:46:55.037967 |
Details available
A local disclosure of sensitive information and a local unauthorized data modification vulnerability were discovered in HPE Integrated Lights-Out 5 (iLO 5) firmware version(s): Prior to 2.71. An unprivileged user could locally exploit this vulnerability to read and write to the iLO 5 firmware file system resulting in a complete loss of confidentiality and a partial loss of integrity and availability. HPE has provided a firmware update to resolve this vulnerability in HPE Integrated Lights-Out 5 (iLO 5).
Published: 2022-08-11T17:18:12.000Z
Updated: 2024-08-03T05:56:16.040Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-28632 |
not_vulnerable | 2026-06-03 14:46:55.036105 |
Details available
A potential arbitrary code execution and a denial of service (DoS) vulnerability within an isolated process were discovered in HPE Integrated Lights-Out 5 (iLO 5) firmware version(s): Prior to 2.71. An unprivileged user could exploit this vulnerability in an adjacent network to potentially execute arbitrary code in an isolated process resulting in a complete loss of confidentiality, integrity, and availability within that process. In addition, an unprivileged user could exploit a denial of service (DoS) vulnerability in an isolated process resulting in a complete loss of availability within that process. HPE has provided a firmware update to resolve this vulnerability in HPE Integrated Lights-Out 5 (iLO 5).
Published: 2022-08-11T17:17:33.000Z
Updated: 2024-08-03T05:56:16.184Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-28631 |
not_vulnerable | 2026-06-03 14:46:55.034218 |
Details available
A potential arbitrary code execution and a denial of service (DoS) vulnerability within an isolated process were discovered in HPE Integrated Lights-Out 5 (iLO 5) firmware version(s): Prior to 2.71. An unprivileged user could exploit this vulnerability in an adjacent network to potentially execute arbitrary code in an isolated process resulting in a complete loss of confidentiality, integrity, and availability within that process. In addition, an unprivileged user could exploit a denial of service (DoS) vulnerability in an isolated process resulting in a complete loss of availability within that process. HPE has provided a firmware update to resolve this vulnerability in HPE Integrated Lights-Out 5 (iLO 5).
Published: 2022-08-11T17:17:19.000Z
Updated: 2024-08-03T05:56:16.092Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-28630 |
not_vulnerable | 2026-06-03 14:46:55.032327 |
Details available
A local arbitrary code execution vulnerability was discovered in HPE Integrated Lights-Out 5 (iLO 5) firmware version(s): Prior to 2.71. An unprivileged user could locally exploit this vulnerability to execute arbitrary code resulting in a complete loss of confidentiality and integrity, and a partial loss of availability. User interaction is required to exploit this vulnerability. HPE has provided a firmware update to resolve this vulnerability in HPE Integrated Lights-Out 5 (iLO 5).
Published: 2022-08-11T17:17:05.000Z
Updated: 2024-08-03T05:56:16.012Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-28629 |
not_vulnerable | 2026-06-03 14:46:55.030458 |
Details available
A local arbitrary code execution vulnerability was discovered in HPE Integrated Lights-Out 5 (iLO 5) firmware version(s): Prior to 2.71. A low privileged user could locally exploit this vulnerability to execute arbitrary code resulting in a complete loss of confidentiality, integrity, and availability. HPE has provided a firmware update to resolve this vulnerability in HPE Integrated Lights-Out 5 (iLO 5).
Published: 2022-08-11T17:16:53.000Z
Updated: 2024-08-03T05:56:16.130Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-28628 |
not_vulnerable | 2026-06-03 14:46:55.028557 |
Details available
A local arbitrary code execution vulnerability was discovered in HPE Integrated Lights-Out 5 (iLO 5) firmware version(s): Prior to 2.71. An unprivileged user could locally exploit this vulnerability to execute arbitrary code resulting in a complete loss of confidentiality, integrity, and availability. HPE has provided a firmware update to resolve this vulnerability in HPE Integrated Lights-Out 5 (iLO 5).
Published: 2022-08-11T17:16:30.000Z
Updated: 2024-08-03T05:56:16.083Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-28627 |
not_vulnerable | 2026-06-03 14:46:55.026612 |
Details available
A local arbitrary code execution vulnerability was discovered in HPE Integrated Lights-Out 5 (iLO 5) firmware version(s): Prior to 2.71. An unprivileged user could locally exploit this vulnerability to execute arbitrary code resulting in a complete loss of confidentiality, integrity, and availability. HPE has provided a firmware update to resolve this vulnerability in HPE Integrated Lights-Out 5 (iLO 5).
Published: 2022-08-11T17:16:41.000Z
Updated: 2024-08-03T05:56:16.043Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-28626 |
not_vulnerable | 2026-06-03 14:46:55.014126 |
Details available
A local arbitrary code execution vulnerability was discovered in HPE Integrated Lights-Out 5 (iLO 5) firmware version(s): Prior to 2.71. A highly privileged user could locally exploit this vulnerability to execute arbitrary code resulting in a complete loss of confidentiality, integrity, and availability. HPE has provided a firmware update to resolve this vulnerability in HPE Integrated Lights-Out 5 (iLO 5).
Published: 2022-08-11T17:16:14.000Z
Updated: 2024-08-03T05:56:16.109Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-46846 |
not_vulnerable | 2026-06-03 14:45:46.083946 |
Details available
MEDIUM (6.4)
Cross Site Scripting vulnerability in Hewlett Packard Enterprise Integrated Lights-Out 5.
Published: 2022-11-03T16:06:09.815Z
Updated: 2025-05-02T19:31:06.168Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-29213 |
not_vulnerable | 2026-06-03 14:44:19.764732 |
Details available
A potential local bypass of security restrictions vulnerability has been identified in HPE ProLiant DL20 Gen10, HPE ProLiant ML30 Gen10, and HPE ProLiant MicroServer Gen10 Plus server's system ROMs prior to version 2.52. The vulnerability could be locally exploited to cause disclosure of sensitive information, denial of service (DoS), and/or compromise system integrity.
Published: 2021-11-01T13:17:32.000Z
Updated: 2024-08-03T22:02:50.965Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-7205 |
not_vulnerable | 2026-06-03 14:43:05.778328 |
Details available
A potential security vulnerability has been identified in HPE Intelligent Provisioning, Service Pack for ProLiant, and HPE Scripting ToolKit. The vulnerability could be locally exploited to allow arbitrary code execution during the boot process. **Note:** This vulnerability is related to using insmod in GRUB2 in the specific impacted HPE product and HPE is addressing this issue. HPE has made the following software updates and mitigation information to resolve the vulnerability in Intelligent Provisioning, Service Pack for ProLiant, and HPE Scripting ToolKit. HPE provided latest Intelligent Provisioning, Service Pack for ProLiant, and HPE Scripting Toolkit which includes the GRUB2 patch to resolve this vulnerability. These new boot images will update GRUB2 and the Forbidden Signature Database (DBX). After the DBX is updated, users will not be able to boot to the older IP, SPP or Scripting ToolKit with Secure Boot enabled. HPE have provided a standalone DBX update tool to work with Microsoft Windows, and supported Linux Operating Systems. These tools can be used to update the Forbidden Signature Database (DBX) from within the OS. **Note:** This DBX update mitigates the GRUB2 issue with insmod enabled, and the "Boot Hole" issue for HPE signed GRUB2 applications.
Published: 2020-07-30T17:27:10.000Z
Updated: 2024-08-04T09:25:48.501Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.