Lucene search

K
cve[email protected]CVE-2013-3620
HistoryJan 02, 2020 - 6:15 p.m.

CVE-2013-3620

2020-01-0218:15:11
CWE-522
web.nvd.nist.gov
134
cve-2013-3620
hardcoded
wsman
credentials
ipmi
firmware
supermicro
x9
x8
generation
motherboards

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

7.6 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

70.2%

Hardcoded WSMan credentials in Intelligent Platform Management Interface (IPMI) with firmware for Supermicro X9 generation motherboards before 3.15 (SMT_X9_315) and firmware for Supermicro X8 generation motherboards before SMT X8 312.

Affected configurations

NVD
Node
supermicrosmt_x9_firmwareRange<3.15
AND
supermicrosh7758Match-
Node
supermicrosmt_x8_firmwareRange<3.12
AND
supermicrosh7757Match-
Node
citrixnetscaler_sdx_firmwareMatch10
AND
citrixnetscaler_sdxMatch-
Node
citrixnetscaler_firmwareMatch-
AND
citrixnetscalerMatch-
Node
citrixnetscaler_sd-wan_firmwareMatch-
AND
citrixnetscaler_sd-wanMatch-

CNA Affected

[
  {
    "product": "IPMI",
    "vendor": "Supermicro",
    "versions": [
      {
        "status": "affected",
        "version": "before 3.15 (SMT_X9_315) and before SMT X8 312"
      }
    ]
  }
]

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

7.6 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

70.2%

Related for CVE-2013-3620