Lucene search
+L

500 matches found

cnvd
cnvd
added 2018/06/05 12:0 a.m.6 views

Intelligent Baseboard Management Controller elevation of privilege vulnerability in multiple Huawei products

Huawei 1288H V5 and others are different models of server equipment from Huawei, China.Intelligent Baseboard Management Controller iBMC is one of the embedded server intelligent management system. A privilege-lifting vulnerability exists in iBMC in several Huawei products. A remote attacker could...

8.8CVSS6.8AI score0.01119EPSS
Exploits0References1
cnvd
cnvd
added 2018/06/05 12:0 a.m.5 views

Intelligent Baseboard Management Controller elevation of privilege vulnerability in multiple Huawei products (CNVD-2018-11505)

Huawei 1288H V5 and others are different models of server equipment from Huawei, China.Intelligent Baseboard Management Controller iBMC is one of the embedded server intelligent management system. A security vulnerability exists in iBMC in several Huawei products, which stems from the program...

9CVSS7.1AI score0.01955EPSS
Exploits0References1
osv
osv
added 2018/06/01 2:29 p.m.3 views

CVE-2018-7951

The iBMC Intelligent Baseboard Management Controller of some Huawei servers have a JSON injection vulnerability due to insufficient input validation. An authenticated, remote attacker can launch a JSON injection to modify the password of administrator. Successful exploit may allow attackers to...

8.8CVSS5.8AI score0.01955EPSS
Exploits0References1
cnvd
cnvd
added 2018/05/28 12:0 a.m.19 views

Intelligent Baseboard Management authentication bypass vulnerability in multiple Huawei products

Huawei 1288H V5 and others are different models of server equipment from Huawei, China.Intelligent Baseboard Management Controller iBMC is one of the embedded server intelligent management system. An authentication bypass vulnerability exists in the iBMC module in multiple Huawei products, which...

7.5CVSS7AI score0.01632EPSS
Exploits0References1
osv
osv
added 2018/05/24 2:29 p.m.6 views

CVE-2018-7942

The iBMC Intelligent Baseboard Management Controller of some Huawei servers have an authentication bypass vulnerability. An unauthenticated, remote attacker may send some specially crafted messages to the affected products. Due to improper authentication design, successful exploit may cause some...

7.5CVSS5.8AI score0.01632EPSS
Exploits0References2
citrix
citrix
added 2017/10/11 12:0 a.m.11 views

How to configure console access on XenServer or Citrix Hypervisor

This article is for customers running Citrix Hypervisor or XenServer who want to configure serial console access to their XenServer hosts. In some support cases, serial console access to the XenServer host is required for debug purposes. The serial connection is to use with HyperTerminal or simil...

6.8AI score
Exploits0
osv
osv
added 2016/09/07 7:28 p.m.4 views

CVE-2016-6899

The Intelligent Baseboard Management Controller iBMC in Huawei RH1288 V3 servers with software before V100R003C00SPC613, RH2288 V3 servers with software before V100R003C00SPC617, RH2288H V3 servers with software before V100R003C00SPC515, RH5885 V3 servers with software before V100R003C10SPC102, a...

7.5CVSS5.8AI score0.00967EPSS
Exploits0References2
nvd
nvd
added 2015/05/19 2:0 a.m.23 views

CVE-2015-0739

The Lights-Out Management LOM implementation in Cisco FireSIGHT System Software 5.3.0 on Sourcefire 3D Sensor devices allows remote authenticated users to perform arbitrary Baseboard Management Controller BMC file uploads via unspecified vectors, aka Bug ID CSCus87938...

4CVSS6.5AI score0.02009EPSS
Exploits0References3
cvelist
cvelist
added 2015/05/19 1:0 a.m.24 views

CVE-2015-0739

The Lights-Out Management LOM implementation in Cisco FireSIGHT System Software 5.3.0 on Sourcefire 3D Sensor devices allows remote authenticated users to perform arbitrary Baseboard Management Controller BMC file uploads via unspecified vectors, aka Bug ID CSCus87938...

6.5AI score0.02009EPSS
Exploits0References3
cisco
cisco
added 2015/05/18 6:29 p.m.31 views

Cisco Sourcefire 3D System Lights-Out Management Arbitrary File Upload Vulnerability

A vulnerability in Lights-Out Management LOM functionality of the Sourcefire 3D System could allow an authenticated, remote attacker to upload arbitrary files to the baseboard management controller BMC on an affected device. The vulnerability is due to insufficient validation and sanitization of...

4CVSS6.8AI score0.02009EPSS
Exploits0References1
cnvd
cnvd
added 2015/04/23 12:0 a.m.19 views

Multiple Lenovo ThinkServer Products ThinkServer System Manager Baseboard Management Controller Encryption Issue Vulnerability

Lenovo ThinkServer System Manager TSM Baseboard Management Controller BMC for ThinkServer RD350, etc. is a controller from Lenovo, China, embedded in the hardware devices of ThinkServer RD350, etc. for managing and monitoring server status. Lenovo's Baseboard Management Controller BMC for...

4.3CVSS6.8AI score0.00472EPSS
Exploits0References1
cnvd
cnvd
added 2015/04/17 12:0 a.m.28 views

Multiple Lenovo ThinkServer Products ThinkServer System Manager Baseboard Management Controller Denial of Service Vulnerability

Lenovo ThinkServer System Manager TSM Baseboard Management Controller BMC for ThinkServer RD350, etc. is a controller from Lenovo, China, embedded in the hardware devices of ThinkServer RD350, etc. for managing and monitoring server status. Lenovo's Baseboard Management Controller BMC for...

5CVSS6.8AI score0.01351EPSS
Exploits0References1
nvd
nvd
added 2015/04/16 11:59 p.m.20 views

CVE-2015-3324

The ThinkServer System Manager TSM Baseboard Management Controller before firmware 1.27.73476 for ThinkServer RD350, RD450, RD550, RD650, and TD350 does not validate server certificates during an "encrypted remote KVM session," which allows man-in-the-middle attackers to spoof servers...

4.3CVSS6.7AI score0.00472EPSS
Exploits0References2
prion
prion
added 2015/04/16 11:59 p.m.15 views

Code injection

The ThinkServer System Manager TSM Baseboard Management Controller before firmware 1.27.73476 for ThinkServer RD350, RD450, RD550, RD650, and TD350 does not validate server certificates during an "encrypted remote KVM session," which allows man-in-the-middle attackers to spoof servers...

4.3CVSS7.2AI score0.00472EPSS
Exploits0References2Affected Software1
prion
prion
added 2015/04/16 11:59 p.m.13 views

Authentication flaw

The ThinkServer System Manager TSM Baseboard Management Controller before firmware 1.27.73476 for ThinkServer RD350, RD450, RD550, RD650, and TD350 allows remote attackers to cause a denial of service web interface crash via a malformed HTTP request during authentication...

5CVSS7.3AI score0.01351EPSS
Exploits0References2Affected Software1
cvelist
cvelist
added 2015/04/16 11:0 p.m.19 views

CVE-2015-3324

The ThinkServer System Manager TSM Baseboard Management Controller before firmware 1.27.73476 for ThinkServer RD350, RD450, RD550, RD650, and TD350 does not validate server certificates during an "encrypted remote KVM session," which allows man-in-the-middle attackers to spoof servers...

6.7AI score0.00472EPSS
Exploits0References2
cve
cve
added 2015/04/16 11:0 p.m.87 views

CVE-2015-3324

CVE-2015-3324 affects Lenovo ThinkServer System Manager (TSM) Baseboard Management Controller. The vulnerability is due to TSM firmware not validating server certificates during an encrypted remote KVM session, enabling man-in-the-middle attackers to spoof the server. Affected devices include Thi...

4.3CVSS6.9AI score0.00472EPSS
Exploits0References2Affected Software1
cvelist
cvelist
added 2015/04/16 11:0 p.m.24 views

CVE-2015-3323

The ThinkServer System Manager TSM Baseboard Management Controller before firmware 1.27.73476 for ThinkServer RD350, RD450, RD550, RD650, and TD350 allows remote attackers to cause a denial of service web interface crash via a malformed HTTP request during authentication...

6.7AI score0.01351EPSS
Exploits0References2
cve
cve
added 2015/04/16 11:0 p.m.60 views

CVE-2015-3323

CVE-2015-3323 affects Lenovo ThinkServer System Manager (TSM) BMC in RD350, RD450, RD550, RD650 and TD350. The vulnerability is triggered by a malformed HTTP request during authentication, causing a denial of service by crashing the web interface. A fix is available in TSM firmware 1.27.73476 (an...

5CVSS7AI score0.01351EPSS
Exploits0References2Affected Software1
redhat
redhat
added 2015/01/13 6:27 p.m.61 views

Important: Red Hat Security Advisory: kernel security and bug fix update

Updated kernel packages that fix three security issues and several bugs are now available for Red Hat Enterprise Linux 6.4 Extended Update Support. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give...

7.8CVSS6.6AI score0.08579EPSS
Exploits3References4
Rows per page
Query Builder