CVE-2024-45656

🗓️ 29 Oct 2024 00:37:16Reported by ibmType

IBM FSP firmware versions FW860.00 to FW1060.10 have static credentials, allowing unauthorized network users to gain service privileges

Reporter	Title	Published	Views	Family All 9
IBM Security Bulletins	Security Bulletin: This Power System update is being released to address CVE-2024-45656	28 Jan 202522:08	–	ibm
Circl	CVE-2024-45656	30 Oct 202411:09	–	circl
CNNVD	IBM Flexible Service Processor 信任管理问题漏洞	29 Oct 202400:00	–	cnnvd
CNVD	IBM Flexible Service Processor Trust Management Issues Vulnerability	22 Nov 202400:00	–	cnvd
Cvelist	CVE-2024-45656 IBM Flexible Service Processor hard coded credentials	29 Oct 202400:37	–	cvelist
EUVD	EUVD-2024-41548	3 Oct 202520:07	–	euvd
NVD	CVE-2024-45656	29 Oct 202401:15	–	nvd
Positive Technologies	PT-2024-7403 · Ibm · Ibm Flexible Service Processor	25 Oct 202400:00	–	ptsecurity
Vulnrichment	CVE-2024-45656 IBM Flexible Service Processor hard coded credentials	29 Oct 202400:37	–	vulnrichment

NVD

Vulners

Node

ibm power_system_e1080_(9080-hex)_firmwareRangeFW1030.00–FW1030.61

ibm power_system_e1080_(9080-hex)_firmwareRangeFW1050.00–FW1050.21

ibm power_system_e1080_(9080-hex)_firmwareRangeFW1060.00–FW1060.10

AND

ibm power_system_e1080_(9080-hex)Match-

Node

ibm power_system_l922_(9008-22l)_firmwareRangeFW950.00–FW950.C0

AND

ibm power_system_l922_(9008-22l)Match-

Node

ibm power_system_s922_(9009-22a)_firmwareRangeFW950.00–FW950.C0

AND

ibm power_system_s922_(9009-22a)Match-

Node

ibm power_system_s922_(9009-22g)_firmwareRangeFW950.00–FW950.C0

AND

ibm power_system_s922_(9009-22g)Match-

Node

ibm power_system_h922_(9223-22h)_firmwareRangeFW950.00–FW950.C0

AND

ibm power_system_h922_(9223-22h)Match-

Node

ibm power_system_h922_(9223-22s)_firmwareRangeFW950.00–FW950.C0

AND

ibm power_system_h922_(9223-22s)Match-

Node

ibm power_system_s914_(9009-41a)_firmwareRangeFW950.00–FW950.C0

AND

ibm power_system_s914_(9009-41a)Match-

Node

ibm power_system_s914_(9009-41g)_firmwareRangeFW950.00–FW950.C0

AND

ibm power_system_s914_(9009-41g)Match-

Node

ibm power_system_s924_(9009-42a)_firmwareRangeFW950.00–FW950.C0

AND

ibm power_system_s924_(9009-42a)Match-

Node

ibm power_system_s924_(9009-42g)_firmwareRangeFW950.00–FW950.C0

AND

ibm power_system_s924_(9009-42g)Match-

Node

ibm power_system_h924_(9223-42h)_firmwareRangeFW950.00–FW950.C0

AND

ibm power_system_h924_(9223-42h)Match-

Node

ibm power_system_h924_(9223-42s)_firmwareRangeFW950.00–FW950.C0

AND

ibm power_system_h924_(9223-42s)Match-

Node

ibm power_system_e950_(9040-mr9)_firmwareRangeFW950.00–FW950.C0

AND

ibm power_system_e950_(9040-mr9)Match-

Node

ibm power_system_e980_(9080-m9s)_firmwareRangeFW950.00–FW950.C0

AND

ibm power_system_e980_(9080-m9s)Match-

Node

ibm ess_5000_(5105-22e)_firmwareRangeFW950.00–FW950.C0

AND

ibm ess_5000_(5105-22e)Match-

Node

ibm power_system_s812_(8284-21a)_firmwareRangeFW860.00–FW860.B3

AND

ibm power_system_s812_(8284-21a)Match-

Node

ibm power_system_s822_(8284-22a)_firmwareRangeFW860.00–FW860.B3

AND

ibm power_system_s822_(8284-22a)Match-

Node

ibm power_system_s814_(8286-41a)_firmwareRangeFW860.00–FW860.B3

AND

ibm power_system_s814_(8286-41a)Match-

Node

ibm power_system_s824_(8286-42a)_firmwareRangeFW860.00–FW860.B3

AND

ibm power_system_s824_(8286-42a)Match-

Node

ibm power_system_s812l_(8247-21l)_firmwareRangeFW860.00–FW860.B3

AND

ibm power_system_s812l_(8247-21l)Match-

Node

ibm power_system_s822l_(8247-22l)_firmwareRangeFW860.00–FW860.B3

AND

ibm power_system_s822l_(8247-22l)Match-

Node

ibm power_system_s824l_(8247-42l)_firmwareRangeFW860.00–FW860.B3

AND

ibm power_system_s824l_(8247-42l)Match-

Node

ibm power_system_e850_(8408-e8e)_firmwareRangeFW860.00–FW860.B3

AND

ibm power_system_e850_(8408-e8e)Match-

Node

ibm power_system_e850c_(8408-44e)_firmwareRangeFW860.00–FW860.B3

AND

ibm power_system_e850c_(8408-44e)Match-

Node

ibm power_system_e870_(9119-mme)_firmwareRangeFW860.00–FW860.B3

AND

ibm power_system_e870_(9119-mme)Match-

Node

ibm power_system_e880_(9119-mhe)_firmwareRangeFW860.00–FW860.B3

AND

ibm power_system_e880_(9119-mhe)Match-

Node

ibm power_system_e870c_(9080-mme)_firmwareRangeFW860.00–FW860.B3

AND

ibm power_system_e870c_(9080-mme)Match-

Node

ibm power_system_e880c_(9080-mhe)_firmwareRangeFW860.00–FW860.B3

AND

ibm power_system_e880c_(9080-mhe)Match-

[
  {
    "cpes": [
      "cpe:2.3:o:ibm:power9_system_firmware:fw1060.00:*:*:*:*:*:*:*",
      "cpe:2.3:o:ibm:power9_system_firmware:fw1050.00:*:*:*:*:*:*:*",
      "cpe:2.3:o:ibm:power9_system_firmware:fw1030.00:*:*:*:*:*:*:*",
      "cpe:2.3:o:ibm:power9_system_firmware:fw950.00:*:*:*:*:*:*:*",
      "cpe:2.3:o:ibm:power9_system_firmware:fw860.00:*:*:*:*:*:*:*"
    ],
    "defaultStatus": "unaffected",
    "product": "Flexible Service Processor",
    "vendor": "IBM",
    "versions": [
      {
        "lessThanOrEqual": "FW860.B3",
        "status": "affected",
        "version": "FW860.00",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "FW950.C0",
        "status": "affected",
        "version": "FW950.00",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "FW1030.61",
        "status": "affected",
        "version": "FW1030.00",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "FW1050.21",
        "status": "affected",
        "version": "FW1050.00",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "FW1060.10",
        "status": "affected",
        "version": "FW1060.00",
        "versionType": "semver"
      }
    ]
  }
]

Source	Link
ibm	www.ibm.com/support/pages/node/7174183

03 Dec 2025 18:14Current

9.6High risk

Vulners AI Score9.6

CVSS 3.19.8

EPSS0.00154

SSVC

CWE-798