HPE Community
ProLiant Servers (ML,DL,SL)
1819552 Members
2605 Online
109603 Solutions
New Discussion

Security Issue iLo5 FW 2.78

 
SOLVED
Go to solution
Marcel_D
Advisor

‎02-16-2023 04:43 AM - last edited on ‎02-19-2023 08:00 PM by

‎02-16-2023 04:43 AM - last edited on ‎02-19-2023 08:00 PM by

Security Issue iLo5 FW 2.78

Hi,

our Security Monitoring Department figured out an issue on iLo5 FW 2.78.

The web application uses jQuery UI version 1.12.1, which contains some known vulnerabilities. For example, it is vulnerable to cross-site scripting attacks4 vulnerable.

The jQuery UI version was read out via the Firefox developer tools. To do this, the command $.ui.version
was executed in the console.

It is recommended to update the jQuery UI library.

IS HPE aware of this and will HPE provide an Update with the next Version?

1 person had this problem.
0 Kudos
Reply
1 REPLY 1
ShabbyBRO
HPE Pro

‎02-16-2023 10:20 AM

‎02-16-2023 10:20 AM

Solution

Re: Security Issue iLo5 FW 2.78

Report a potential zero-day security vulnerability to Hewlett Packard Enterprise

 

link - https://www.hpe.com/h41268/live/index_e.aspx?qid=11503

I'm an HPE employee.
[Any personal opinions expressed are mine, and not official statements on behalf of Hewlett Packard Enterprise]
Accept or Kudo
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.