A flaw in the file permissions may expose IPMI user passwords. This may lead to privilege escalations.
CVEID:CVE-2020-14156
**DESCRIPTION:**OpenBMC phosphor-host-ipmid could allow a remote authenticated attacker to bypass security restrictions, caused by the failure to ensure that /etc/ipmi-pass has strong file permissions by user_channel/passwd_mgr.cpp. An attacker could exploit this vulnerability to read and decode the credentials and escalate to any IPMI user.
CVSS Base score: 8.8
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/183497 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H)
Affected Product(s) | Version(s) |
---|---|
IBM Power System AC922 (8335-GTG) | OP940.00, OP940.01 |
Customers with the product below, running OP940.00 or OP940.01 should install OP940.10
None
CPE | Name | Operator | Version |
---|---|---|---|
power system s924 server (9009-42a) | eq | 940.10 |