Lucene search
K

497 matches found

CNVD
CNVD
added 2018/05/28 12:0 a.m.4 views

Intelligent Baseboard Management authentication bypass vulnerability in multiple Huawei products

Huawei 1288H V5 and others are different models of server equipment from Huawei, China.Intelligent Baseboard Management Controller iBMC is one of the embedded server intelligent management system. An authentication bypass vulnerability exists in the iBMC module in multiple Huawei products, which...

7.5CVSS7AI score0.01632EPSS
Exploits0References1
OSV
OSV
added 2018/05/24 2:29 p.m.6 views

CVE-2018-7942

The iBMC Intelligent Baseboard Management Controller of some Huawei servers have an authentication bypass vulnerability. An unauthenticated, remote attacker may send some specially crafted messages to the affected products. Due to improper authentication design, successful exploit may cause some...

7.5CVSS5.8AI score0.01632EPSS
Exploits0References2
Citrix
Citrix
added 2017/10/11 12:0 a.m.11 views

How to configure console access on XenServer or Citrix Hypervisor

This article is for customers running Citrix Hypervisor or XenServer who want to configure serial console access to their XenServer hosts. In some support cases, serial console access to the XenServer host is required for debug purposes. The serial connection is to use with HyperTerminal or simil...

6.8AI score
Exploits0
OSV
OSV
added 2016/09/07 7:28 p.m.4 views

CVE-2016-6899

The Intelligent Baseboard Management Controller iBMC in Huawei RH1288 V3 servers with software before V100R003C00SPC613, RH2288 V3 servers with software before V100R003C00SPC617, RH2288H V3 servers with software before V100R003C00SPC515, RH5885 V3 servers with software before V100R003C10SPC102, a...

7.5CVSS5.8AI score0.00967EPSS
Exploits0References2
NVD
NVD
added 2015/05/19 2:0 a.m.23 views

CVE-2015-0739

The Lights-Out Management LOM implementation in Cisco FireSIGHT System Software 5.3.0 on Sourcefire 3D Sensor devices allows remote authenticated users to perform arbitrary Baseboard Management Controller BMC file uploads via unspecified vectors, aka Bug ID CSCus87938...

4CVSS6.5AI score0.02009EPSS
Exploits0References3
Cvelist
Cvelist
added 2015/05/19 1:0 a.m.24 views

CVE-2015-0739

The Lights-Out Management LOM implementation in Cisco FireSIGHT System Software 5.3.0 on Sourcefire 3D Sensor devices allows remote authenticated users to perform arbitrary Baseboard Management Controller BMC file uploads via unspecified vectors, aka Bug ID CSCus87938...

6.5AI score0.02009EPSS
Exploits0References3
Cisco
Cisco
added 2015/05/18 6:29 p.m.31 views

Cisco Sourcefire 3D System Lights-Out Management Arbitrary File Upload Vulnerability

A vulnerability in Lights-Out Management LOM functionality of the Sourcefire 3D System could allow an authenticated, remote attacker to upload arbitrary files to the baseboard management controller BMC on an affected device. The vulnerability is due to insufficient validation and sanitization of...

4CVSS6.8AI score0.02009EPSS
Exploits0References1
CNVD
CNVD
added 2015/04/23 12:0 a.m.3 views

Multiple Lenovo ThinkServer Products ThinkServer System Manager Baseboard Management Controller Encryption Issue Vulnerability

Lenovo ThinkServer System Manager TSM Baseboard Management Controller BMC for ThinkServer RD350, etc. is a controller from Lenovo, China, embedded in the hardware devices of ThinkServer RD350, etc. for managing and monitoring server status. Lenovo's Baseboard Management Controller BMC for...

4.3CVSS6.8AI score0.00472EPSS
Exploits0References1
CNVD
CNVD
added 2015/04/17 12:0 a.m.2 views

Multiple Lenovo ThinkServer Products ThinkServer System Manager Baseboard Management Controller Denial of Service Vulnerability

Lenovo ThinkServer System Manager TSM Baseboard Management Controller BMC for ThinkServer RD350, etc. is a controller from Lenovo, China, embedded in the hardware devices of ThinkServer RD350, etc. for managing and monitoring server status. Lenovo's Baseboard Management Controller BMC for...

5CVSS6.8AI score0.01351EPSS
Exploits0References1
NVD
NVD
added 2015/04/16 11:59 p.m.20 views

CVE-2015-3324

The ThinkServer System Manager TSM Baseboard Management Controller before firmware 1.27.73476 for ThinkServer RD350, RD450, RD550, RD650, and TD350 does not validate server certificates during an "encrypted remote KVM session," which allows man-in-the-middle attackers to spoof servers...

4.3CVSS6.7AI score0.00472EPSS
Exploits0References2
Prion
Prion
added 2015/04/16 11:59 p.m.11 views

Authentication flaw

The ThinkServer System Manager TSM Baseboard Management Controller before firmware 1.27.73476 for ThinkServer RD350, RD450, RD550, RD650, and TD350 allows remote attackers to cause a denial of service web interface crash via a malformed HTTP request during authentication...

5CVSS7.3AI score0.01351EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2015/04/16 11:59 p.m.14 views

Code injection

The ThinkServer System Manager TSM Baseboard Management Controller before firmware 1.27.73476 for ThinkServer RD350, RD450, RD550, RD650, and TD350 does not validate server certificates during an "encrypted remote KVM session," which allows man-in-the-middle attackers to spoof servers...

4.3CVSS7.2AI score0.00472EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2015/04/16 11:0 p.m.56 views

CVE-2015-3323

CVE-2015-3323 affects Lenovo ThinkServer System Manager (TSM) BMC in RD350, RD450, RD550, RD650 and TD350. The vulnerability is triggered by a malformed HTTP request during authentication, causing a denial of service by crashing the web interface. A fix is available in TSM firmware 1.27.73476 (an...

5CVSS7AI score0.01351EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2015/04/16 11:0 p.m.85 views

CVE-2015-3324

CVE-2015-3324 affects Lenovo ThinkServer System Manager (TSM) Baseboard Management Controller. The vulnerability is due to TSM firmware not validating server certificates during an encrypted remote KVM session, enabling man-in-the-middle attackers to spoof the server. Affected devices include Thi...

4.3CVSS6.9AI score0.00472EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2015/04/16 11:0 p.m.22 views

CVE-2015-3323

The ThinkServer System Manager TSM Baseboard Management Controller before firmware 1.27.73476 for ThinkServer RD350, RD450, RD550, RD650, and TD350 allows remote attackers to cause a denial of service web interface crash via a malformed HTTP request during authentication...

6.7AI score0.01351EPSS
Exploits0References2
Cvelist
Cvelist
added 2015/04/16 11:0 p.m.19 views

CVE-2015-3324

The ThinkServer System Manager TSM Baseboard Management Controller before firmware 1.27.73476 for ThinkServer RD350, RD450, RD550, RD650, and TD350 does not validate server certificates during an "encrypted remote KVM session," which allows man-in-the-middle attackers to spoof servers...

6.7AI score0.00472EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2015/01/13 6:27 p.m.60 views

Important: Red Hat Security Advisory: kernel security and bug fix update

Updated kernel packages that fix three security issues and several bugs are now available for Red Hat Enterprise Linux 6.4 Extended Update Support. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give...

7.8CVSS6.6AI score0.08579EPSS
Exploits3References4
ThreatPost
ThreatPost
added 2014/09/11 3:21 p.m.9 views

Cisco Patches Denial-of-Services Vulnerability in IMC

US-CERT today released an advisory warning of a vulnerability in Cisco’s Integrated Management Controller IMC. Cisco released an update that patches the security hole. The IMC is a baseboard management controller that oversees embedded servers inside Cisco Unified Computing System E-Series Blade...

1.2AI score
Exploits0References4
The Hacker News
The Hacker News
added 2014/06/19 9:16 p.m.16 views

BMC Vulnerability Exposes Admin Password of 32,000 Servers in Plaintext on the Internet

A Flaw has been discovered in the motherboards manufactured by the server manufacturer Supermicro, has left more than 30,000 servers vulnerable to hackers that could allow them to remotely compromise the management interface of unpatched servers. The vulnerability actually resides in the Baseboar...

6.3AI score
Exploits0
NVD
NVD
added 2013/10/19 10:36 a.m.27 views

CVE-2012-4112

The Baseboard Management Controller BMC in Cisco Unified Computing System UCS allows local users to gain privileges and execute arbitrary commands via crafted command parameters within the command-line interface, aka Bug ID CSCtr43330...

6.8CVSS7.5AI score0.00328EPSS
Exploits0References1
Rows per page
Query Builder