Input validation

Improper password hashing in firmware in Intel Server Board S7200AP,S7200APR and Intel Compute Module HNS7200AP, HNS7200AP may allow a privileged user to potentially disclose firmware passwords via local access...

CVE-2018-12172

This CVE (CVE-2018-12172) concerns an improper password hashing weakness in firmware for Intel® Server Board Family (S7200AP, S7200APR) and Intel® Compute Module (HNS7200AP, HNS7200AP). The root cause is insecure password handling in the firmware that could allow a privileged local user to potent...

CVE-2018-12173

Insufficient access protection in firmware in Intel Server Board, Intel Server System and Intel Compute Module before firmware version 00.01.0014 may allow an unauthenticated attacker to potentially execute arbitrary code resulting in information disclosure, escalation of privilege and/or denial ...

CVE-2018-12172

Improper password hashing in firmware in Intel Server Board S7200AP,S7200APR and Intel Compute Module HNS7200AP, HNS7200AP may allow a privileged user to potentially disclose firmware passwords via local access...

Moderate: Red Hat Security Advisory: openstack-nova security and bug fix update

An update for openstack-nova is now available for Red Hat OpenStack Platform 9.0 Mitaka. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

openstack-nova: Swapping encrypted volumes can allow an attacker to corrupt the LUKS header causing a denial of service in the host

OpenStack Nova has a vulnerability in the handling of encrypted volumes. By detaching and reattaching an encrypted volume, an attacker may access the underlying raw volume and corrupt the LUKS header, resulting in a denial of service attack on the compute host. All Nova installations supporting...

Moderate: Red Hat Security Advisory: openstack-nova security and bug fix update

An update for openstack-nova is now available for Red Hat OpenStack Platform 10.0 Newton. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

Intel® NUC Firmware Security Advisory

Summary: A potential security vulnerability in firmware for Intel® NUC may allow information disclosure, escalation of privilege and/or denial of service. Intel® is releasing firmware security updates for Intel® NUC Firmware to mitigate this potential vulnerability. Vulnerability Details CVEID:...

RHEL 6 / 7 : eap7-jboss-ec2-eap (RHSA-2016:1840)

An update for eap7-jboss-ec2-eap is now available for Red Hat JBoss Enterprise Application Platform 7.0 for RHEL 6 and Red Hat JBoss Enterprise Application Platform 7.0 for RHEL 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability...

Moderate: Red Hat Security Advisory: openstack-nova security, bug fix, and enhancement update

An update for openstack-nova is now available for Red Hat OpenStack Platform 12.0 Pike. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

CVE-2017-2637

A design flaw issue was found in the Red Hat OpenStack Platform director use of TripleO to enable libvirtd based live-migration. Libvirtd is deployed by default by director listening on 0.0.0.0 all interfaces with no-authentication or encryption. Anyone able to make a TCP connection to any comput...

Intel Server Board, Compute Module and Server System Denial of Service Vulnerabilities

Intel Server Board, Compute Module and Server System are all products of Intel Corporation.Intel Server Board is a server motherboard.Compute Module is a compute module.Server System is a server array card. The Server System is a server array card. A security vulnerability exists in the BMC...

Code injection

BMC Firmware in Intel server boards, compute modules, and systems potentially allow an attacker with administrative privileges to make unauthorized read\writes to the SMBUS...

CVE-2018-3682

CVE-2018-3682 affects Intel server BMC firmware on server boards, compute modules, and server systems. The vulnerability allows an attacker with administrative privileges to perform unauthorized read/write operations on the SMBUS, exposing confidentiality, integrity, and availability impacts. CVS...

BMC Firmware Vulnerability Intel Server Boards, Compute Modules and Systems

Summary: BMC Firmware in Intel server boards, compute modules, and systems potentially allow an attacker with administrative privileges to make unauthorized read\writes to the SMBUS. • 8.2 High CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H Affected products: Product Type | Product Name | MM...

Unspecified vulnerability in tinyexr

tinyexr is a small OpenEXR image load/save library. A security vulnerability exists in the ComputeChannelLayout of the tinyexr.h file in version 0.9.5 of tinyexr. No details of the vulnerability are provided at this time...

CVE-2018-0362

The CVE-2018-0362 entry describes a vulnerability in BIOS authentication management for Cisco 5000 Series Enterprise Network Compute System (ENCS) and Cisco UCS E-Series Servers. A local, unauthenticated attacker could bypass BIOS authentication by submitting an empty password to the BIOS prompt,...

Security Bulletin: IBM PowerVC is impacted by OpenStack Compute denial of service vulnerability (CVE-2016-7498)

Summary If an authenticated user deletes an instance while it is in resize state, it will cause the original instance to not be deleted from the compute node it was running on. An attacker can use this to launch a denial of service attack. All Nova setups are affected. Vulnerability Details CVEID...

Security Bulletin: IBM SmartCloud Orchestrator - OpenStack Compute SSL information disclosure (CVE-2013-6491)

Summary An attacker might exploit this vulnerability using man-in-the-middle techniques to obtain sensitive information. The python-qpid client common/rpc/implqpid.py in OpenStack Oslo before 2013.2 does not enforce SSL connections when qpidprotocol is set to ssl. It allows remote attackers to...

Security Bulletin: Nova live snapshots use an insecure local directory (CVE-2013-7048)

Summary The directories that are used to temporarily store live snapshots on Nova compute nodes are writable to all local users. A local attacker with shell access on the compute nodes might, therefore, read and modify the contents of live snapshots before those files are uploaded to the image...