Lucene search
K

210 matches found

NVD
NVD
added 2020/06/15 6:15 p.m.16 views

CVE-2020-14156

userchannel/passwdmgr.cpp in OpenBMC phosphor-host-ipmid before 2020-04-03 does not ensure that /etc/ipmi-pass has strong file permissions...

8.8CVSS0.01809EPSS
Exploits0References3
OSV
OSV
added 2020/06/15 6:15 p.m.19 views

CVE-2020-14156

userchannel/passwdmgr.cpp in OpenBMC phosphor-host-ipmid before 2020-04-03 does not ensure that /etc/ipmi-pass has strong file permissions...

8.8CVSS6.9AI score
Exploits0References3
Prion
Prion
added 2020/06/15 6:15 p.m.15 views

Design/Logic Flaw

userchannel/passwdmgr.cpp in OpenBMC phosphor-host-ipmid before 2020-04-03 does not ensure that /etc/ipmi-pass has strong file permissions...

6.5CVSS8.7AI score0.01809EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2020/06/15 5:35 p.m.55 views

CVE-2020-14156

The CVE-2020-14156 issue affects OpenBMC phosphor-host-ipmid prior to 2020-04-03, where user_channel/passwd_mgr.cpp failed to ensure strong permissions on /etc/ipmi-pass. This allowed an attacker to read credentials and potentially escalate privileges to IPMI users. Reported in multiple sources (...

8.8CVSS8.7AI score0.01809EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2020/06/15 5:35 p.m.18 views

CVE-2020-14156

userchannel/passwdmgr.cpp in OpenBMC phosphor-host-ipmid before 2020-04-03 does not ensure that /etc/ipmi-pass has strong file permissions...

8.7AI score0.01809EPSS
Exploits0References3
OSV
OSV
added 2019/08/26 3:15 p.m.3 views

CVE-2019-4169

IBM Open Power Firmware OP910 and OP920 could allow access to BMC via IPMI using default OpenBMC password even after BMC password was changed away from the default password. IBM X-Force ID: 158702...

9.1CVSS7.3AI score0.0171EPSS
Exploits0References2
NVD
NVD
added 2019/08/26 3:15 p.m.20 views

CVE-2019-4169

IBM Open Power Firmware OP910 and OP920 could allow access to BMC via IPMI using default OpenBMC password even after BMC password was changed away from the default password. IBM X-Force ID: 158702...

9.1CVSS8.2AI score0.0171EPSS
Exploits0References2
CVE
CVE
added 2019/08/26 2:40 p.m.53 views

CVE-2019-4169

CVE-2019-4169 affects IBM Open Power Firmware OP910 and OP920. The issue allows BMC access via IPMI using the default OpenBMC password even after the BMC password has been changed. IBM’s bulletin confirms affected Power9 OpenPOWER releases OP910 and OP920 and provides remediation: OP910 users sho...

9.1CVSS8.8AI score0.0171EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2019/08/26 2:40 p.m.22 views

CVE-2019-4169

IBM Open Power Firmware OP910 and OP920 could allow access to BMC via IPMI using default OpenBMC password even after BMC password was changed away from the default password. IBM X-Force ID: 158702...

8.1CVSS8.8AI score0.0171EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2019/02/19 12:0 a.m.6 views

The vulnerability of the software for OpenBMC controllers, related to access control errors, allows a perpetrator to execute malicious code, read and write arbitrary data, modify configuration settings, or cause service failures.

The vulnerability of the software for OpenBMC controllers is related to access control errors. Exploiting this vulnerability allows a malicious actor to execute malicious code, read and write arbitrary data, modify configuration settings, or cause service failures...

8.8CVSS8.2AI score0.03631EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder