Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2020-26122
HistoryDec 07, 2020 - 3:34 p.m.

CVE-2020-26122

2020-12-0715:34:55
mitre
www.cve.org
2
cve-2020-26122
remote code execution
administrator privileges
baseboard management controller
firmware
signature verification mechanism

AI Score

7.5

Confidence

High

EPSS

0.008

Percentile

82.5%

JSON

Inspur NF5266M5 through 3.21.2 and other server M5 devices allow remote code execution via administrator privileges. The Baseboard Management Controller (BMC) program of INSPUR server is weak in checking the firmware and lacks the signature verification mechanism, the attacker who obtains the administrator’s rights can control the BMC by inserting malicious code into the firmware program and bypassing the current verification mechanism to upgrade the BMC.

Related

prion 1
nvd 1
cve 1
prion
prion
Remote code execution
2020-12-07 16:15:00
nvd
nvd
CVE-2020-26122
2020-12-07 16:15:12
cve
cve
CVE-2020-26122
2020-12-07 16:15:12

AI Score

7.5

Confidence

High

EPSS

0.008

Percentile

82.5%

JSON
Related for CVELIST:CVE-2020-26122
prion1nvd1cve1