CVE-2022-22374

The BMC IBM Power 9 AC922 OP910, OP920, OP930, and OP940 may be subject to a firmware downgrade attack which may affect its ability to operate its host. IBM X-Force ID: 221442...

CVE-2022-22374

The BMC IBM Power 9 AC922 OP910, OP920, OP930, and OP940 may be subject to a firmware downgrade attack which may affect its ability to operate its host. IBM X-Force ID: 221442...

CVE-2021-38960

IBM OPENBMC OP920, OP930, and OP940 could allow an unauthenticated user to obtain sensitive information. IBM X-Force ID: 212047...

CVE-2021-38960

IBM OPENBMC OP920, OP930, and OP940 could allow an unauthenticated user to obtain sensitive information. IBM X-Force ID: 212047...

CVE-2021-38960

CVE-2021-38960 affects IBM OPENBMC OP920, OP930 and OP940 (and OP910 per CNVD) exposing sensitive information to unauthenticated users via the BMC HTTPS server. Root cause described as an information-disclosure vulnerability with network access and no authentication required. Impact is partial to...

Security Bulletin: This Power System update is being released to address CVE-2019-4169

Summary POWER9: In response to an IPMI implementation error, a new Power System firmware update is being released to address Common Vulnerabilities and Exposures issue number CVE 2019-4169. Vulnerability Details CVEID: CVE-2019-4169 DESCRIPTION: IBM Open Power Firmware could allow access to BMC v...

Security Bulletin: This Power System update is being released to address CVE 2019-6260

Summary POWER8/POWER9: In response to a security issue with BMC's physical address space, a new Power System firmware update is being released to address Common Vulnerabilities and Exposures issue number CVE 2019-6260. Vulnerability Details CVEID: CVE 2019-6260 DESCRIPTION: The ASPEED AST2400 and...

CVE-2019-4169

IBM Open Power Firmware OP910 and OP920 could allow access to BMC via IPMI using default OpenBMC password even after BMC password was changed away from the default password. IBM X-Force ID: 158702...

CVE-2019-4169

CVE-2019-4169 affects IBM Open Power Firmware OP910 and OP920. The issue allows BMC access via IPMI using the default OpenBMC password even after the BMC password has been changed. IBM’s bulletin confirms affected Power9 OpenPOWER releases OP910 and OP920 and provides remediation: OP910 users sho...

PT-2019-16946 · Ibm · Ibm Open Power Firmware

Name of the Vulnerable Software and Affected Versions: IBM Open Power Firmware versions OP910 and OP920 Description: The issue allows access to the Baseboard Management Controller BMC via Intelligent Platform Management Interface IPMI using the default OpenBMC password, even after the BMC passwor...

CVE-2018-1992

The IBM POWER9 boot firmware bootloader contains a buffer overflow in the initial boot image load path that could overwrite its own instruction memory and bypass secure boot protections, allowing trojan installation. Affected products/versions include FW910 boot firmware and OP910/OP920 OpenPOWER...