Lucene search

[email protected]CVE-2012-2187

HistorySep 25, 2012 - 8:55 p.m.

CVE-2012-2187

2012-09-2520:55:00

CWE-310

[email protected]

web.nvd.nist.gov

ibm

remote supervisor adapter

firmware

system x3650

x3850 m2

x3950 m2

rsa keys

cryptographic protection mechanisms

nvd

cve-2012-2187

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6.7 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

46.9%

JSON

IBM Remote Supervisor Adapter II firmware for System x3650, x3850 M2, and x3950 M2 1.13 and earlier generates weak RSA keys, which makes it easier for attackers to defeat cryptographic protection mechanisms via unspecified vectors.

Affected configurations

NVD

Node

ibmremote_supervisor_adapter_ii_firmwareRange≤1.13

ibmremote_supervisor_adapter_ii_firmwareMatch1.0

ibmremote_supervisor_adapter_ii_firmwareMatch1.1

ibmremote_supervisor_adapter_ii_firmwareMatch1.2

ibmremote_supervisor_adapter_ii_firmwareMatch1.3

ibmremote_supervisor_adapter_ii_firmwareMatch1.4

ibmremote_supervisor_adapter_ii_firmwareMatch1.5

ibmremote_supervisor_adapter_ii_firmwareMatch1.6

ibmremote_supervisor_adapter_ii_firmwareMatch1.7

ibmremote_supervisor_adapter_ii_firmwareMatch1.8

ibmremote_supervisor_adapter_ii_firmwareMatch1.9

ibmremote_supervisor_adapter_ii_firmwareMatch1.10

ibmremote_supervisor_adapter_ii_firmwareMatch1.11

ibmremote_supervisor_adapter_ii_firmwareMatch1.12

AND

ibmx3650

ibmx3850Matchm2

ibmx3950Matchm2

CPENameOperatorVersion
ibm:remote_supervisor_adapter_ii_firmwareibm remote supervisor adapter ii firmwarele1.13
ibm:remote_supervisor_adapter_ii_firmwareibm remote supervisor adapter ii firmwareeq1.0
ibm:remote_supervisor_adapter_ii_firmwareibm remote supervisor adapter ii firmwareeq1.1
ibm:remote_supervisor_adapter_ii_firmwareibm remote supervisor adapter ii firmwareeq1.2
ibm:remote_supervisor_adapter_ii_firmwareibm remote supervisor adapter ii firmwareeq1.3
ibm:remote_supervisor_adapter_ii_firmwareibm remote supervisor adapter ii firmwareeq1.4
ibm:remote_supervisor_adapter_ii_firmwareibm remote supervisor adapter ii firmwareeq1.5
ibm:remote_supervisor_adapter_ii_firmwareibm remote supervisor adapter ii firmwareeq1.6
ibm:remote_supervisor_adapter_ii_firmwareibm remote supervisor adapter ii firmwareeq1.7
ibm:remote_supervisor_adapter_ii_firmwareibm remote supervisor adapter ii firmwareeq1.8

CPE	Name	Operator	Version
ibm:remote_supervisor_adapter_ii_firmware	ibm remote supervisor adapter ii firmware	le	1.13
ibm:remote_supervisor_adapter_ii_firmware	ibm remote supervisor adapter ii firmware	eq	1.0
ibm:remote_supervisor_adapter_ii_firmware	ibm remote supervisor adapter ii firmware	eq	1.1
ibm:remote_supervisor_adapter_ii_firmware	ibm remote supervisor adapter ii firmware	eq	1.2
ibm:remote_supervisor_adapter_ii_firmware	ibm remote supervisor adapter ii firmware	eq	1.3
ibm:remote_supervisor_adapter_ii_firmware	ibm remote supervisor adapter ii firmware	eq	1.4
ibm:remote_supervisor_adapter_ii_firmware	ibm remote supervisor adapter ii firmware	eq	1.5
ibm:remote_supervisor_adapter_ii_firmware	ibm remote supervisor adapter ii firmware	eq	1.6
ibm:remote_supervisor_adapter_ii_firmware	ibm remote supervisor adapter ii firmware	eq	1.7
ibm:remote_supervisor_adapter_ii_firmware	ibm remote supervisor adapter ii firmware	eq	1.8

Rows per page:

1-10 of 141

References

www.ibm.com/connections/blogs/PSIRT/entry/security_bulletin_weak_key_vulnerability_in_remote_supervisor_adapter_ii_firmware_cve_2012_2187_ibm_system_x3650_system_x3850_m2_system_x3950_m25

www.securityfocus.com/bid/55609

www-947.ibm.com/support/entry/myportal/docdisplay?lndocid=MIGR-5091525