19 matches found
EUVD-2021-25397
Malware in sbrugna...
EUVD-2021-25398
Malware in sbrugna...
EUVD-2022-27634
Malicious code in bioql PyPI...
CVE-2022-22488
IBM OpenBMC OP910 and OP940 could allow a privileged user to cause a denial of service by uploading or deleting too many CA certificates in a short period of time. IBM X-Force ID: 2226337...
CVE-2024-31916
IBM OpenBMC FW1050.00 through FW1050.10 BMCWeb HTTPS server component could disclose sensitive URI content to an unauthorized actor that bypasses authentication channels. IBM X-ForceID: 290026...
IBM OpenBMC Elevation of Privilege Vulnerability
IBM OpenBMC is a Linux distribution from International Business Machines IBM used to manage controllers for devices such as servers, top-of-rack switches, or RAID devices. An elevation of privilege vulnerability exists in IBM OpenBMC, which can be exploited by an attacker to gain administrative...
CVE-2024-35124 IBM OpenBMC authentication bypass
A vulnerability in the combination of the OpenBMC's FW1050.00 through FW1050.10, FW1030.00 through FW1030.50, and FW1020.00 through FW1020.60 default password and session management allow an attacker to gain administrative access to the BMC. IBM X-Force ID: 290674...
PT-2024-24280 · Ibm · Ibm Openbmc
Name of the Vulnerable Software and Affected Versions: IBM OpenBMC versions FW1050.00 through FW1050.10 Description: The BMCWeb HTTPS server component in IBM OpenBMC could disclose sensitive URI content to an unauthorized actor that bypasses authentication channels. Recommendations: For versions...
CVE-2022-22488
IBM OpenBMC OP910 and OP940 could allow a privileged user to cause a denial of service by uploading or deleting too many CA certificates in a short period of time. IBM X-Force ID: 2226337...
Buffer overflow
IBM OpenBMC OP910 and OP940 could allow a privileged user to cause a denial of service by uploading or deleting too many CA certificates in a short period of time. IBM X-Force ID: 2226337...
CVE-2022-22488 IBM OpenBMC denial of service
IBM OpenBMC OP910 and OP940 could allow a privileged user to cause a denial of service by uploading or deleting too many CA certificates in a short period of time. IBM X-Force ID: 2226337...
IBM OPENBMC OP910和OP940 代码问题漏洞
IBM OPENBMC is a simulator from International Business Machines Corporation IBM. IBM OPENBMC versions OP910 and OP940 have a denial-of-service vulnerability that stems from allowing privileged users to upload the wrong site ID book, which could be exploited by an attacker to cause them to lose...
PT-2022-9945 · Ibm · Ibm Openbmc Op910 +1
Name of the Vulnerable Software and Affected Versions: IBM OPENBMC OP910 and OP940 affected versions not specified Description: The issue allows a privileged user to upload an improper site identity certificate, potentially causing the system to lose network services. Recommendations: At the...
CVE-2021-38960
IBM OPENBMC OP920, OP930, and OP940 could allow an unauthenticated user to obtain sensitive information. IBM X-Force ID: 212047...
IBM OPENBMC Cross-Site Scripting Vulnerability
IBM OPENBMC is a POWER8 and POWER9 emulator from International Business Machines Corporation Ibm. IBM OPENBMC has a cross-site scripting vulnerability in version OP910 that stems from a lack of data validation filtering of user-supplied data and output. An attacker could exploit the vulnerability...
CVE-2021-38961
IBM OPENBMC OP910 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 212049...
Cross site scripting
IBM OPENBMC OP910 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 212049...
CVE-2021-38961
IBM OPENBMC OP910 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 212049...
Security Bulletin: This Power System update is being released to address CVE 2021-38961
Summary POWER9: In response to a security issue with the BMC's web server, a new Power System firmware update is being released to address Common Vulnerabilities and Exposures issue number CVE 2021-38961. Vulnerability Details CVEID: CVE-2021-38961 DESCRIPTION: IBM OPENBMC is vulnerable to...