Lucene search
K

145 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2021/12/07 2:16 p.m.44 views

Security Bulletin: This Power System update is being released to address CVE 2020-25705

Summary POWER9: In response to security issues with BMC's UDP network service, a new Power System firmware update is being released to address Common Vulnerabilities and Exposures issue number CVE 2020-25705. Vulnerability Details CVEID: CVE-2020-25705 DESCRIPTION: Linux Kernel could allow a remo...

7.4CVSS7.5AI score0.06692EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/12/07 2:16 p.m.40 views

Security Bulletin: This Power System update is being released to address CVE 2021-3450 and CVE 2021-3449

Summary POWER9: In response to security issues with BMC's HTTPS server, a new Power System firmware update is being released to address Common Vulnerabilities and Exposures issue numbers CVE 2021-3450 and CVE 2021-3449. Vulnerability Details CVEID: CVE-2021-3450 DESCRIPTION: OpenSSL could allow a...

7.4CVSS7.2AI score0.62906EPSS
Exploits4Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/12/07 2:12 p.m.19 views

Security Bulletin: Incorrect file permissions allows authenticated users to recover IPMI user passwords

Summary A flaw in the file permissions may expose IPMI user passwords. This may lead to privilege escalations. Vulnerability Details CVEID: CVE-2020-14156 DESCRIPTION: OpenBMC phosphor-host-ipmid could allow a remote authenticated attacker to bypass security restrictions, caused by the failure to...

8.8CVSS8.1AI score0.01809EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/12/02 10:54 p.m.39 views

Security Bulletin: This Power System update is being released to address CVE 2020-16166

Summary POWER9: In response to a security issue with BMC's network service, a new Power System firmware update is being released to address Common Vulnerabilities and Exposures issue number CVE 2020-16166. Vulnerability Details CVEID: CVE-2020-16166 DESCRIPTION: Linux Kernel could allow a remote...

4.3CVSS5.9AI score0.05228EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/12/02 9:26 p.m.25 views

Security Bulletin: This Power System update is being released to address CVE 2021-39296

Summary POWER9: In response to a security issue with BMC's IPMI LAN+ interface, a new Power System firmware update is being released to address Common Vulnerabilities and Exposures issue number CVE 2021-39296. Vulnerability Details CVEID: CVE-2021-39296 DESCRIPTION: OpenBMC could allow a remote...

10CVSS9.1AI score0.0301EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/12/02 8:35 p.m.27 views

Security Bulletin: This Power System update is being released to address CVE 2020-1971

Summary POWER9: In response to a security issue with BMC's HTTPS server, a new Power System firmware update is being released to address Common Vulnerabilities and Exposures issue number CVE 2020-1971. Vulnerability Details CVEID: CVE-2020-1971 DESCRIPTION: OpenSSL is vulnerable to a denial of...

5.9CVSS5.8AI score0.06968EPSS
Exploits3Affected Software1
CNVD
CNVD
added 2021/11/12 12:0 a.m.26 views

Siemens Product WIBU Systems CodeMeter Runtime Denial of Service Vulnerability

PSSRCAPE is a transmission and distribution network protection simulation software. pssRE i is a power system simulation and analysis tool for transmission operation and planning. pssRODMS i is a transmission network modeling and analysis tool. sicam 230 is a scalable process control system for a...

7.1CVSS6.8AI score0.00289EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2021/09/20 7:21 p.m.18 views

Security Bulletin: The PowerVM hypervisor is vulnerable to a specially crafted sequence of hypervisor calls from a partition that can lead to a system crash

Summary An attacker that gains total control of a virtual machine running on the PowerVM hypervisor could issue a specially crafted sequence of hypervisor calls that will lead to a system crash and and an outage of all virtual machines running on the same system Vulnerability Details CVEID:...

6CVSS1.1AI score0.00228EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2021/08/04 5:39 a.m.18 views

Security Bulletin: The PowerVM Platform KeyStore functionality can be compromised if an attacker gains service access to the FSP

Summary An attacker that gains service access to the FSP can locate and through a series of service procedures decrypt data contained in the Platform KeyStore Vulnerability Details CVEID: CVE-2021-29765 DESCRIPTION: IBM PowerVM Hypervisor could allow an attacker to obtain sensitive information if...

7.5CVSS2.1AI score0.01145EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2021/07/28 6:10 a.m.22 views

Security Bulletin: This Power System update is being released to address CVE 2021-20505

Summary POWER9: In response to a weakness in a set of PowerVM service procedures a new Power System firmware update is being released to address Common Vulnerabilities and Exposures issue number CVE 2021-20505. Vulnerability Details CVEID: CVE-2021-20505 DESCRIPTION: The PowerVM Logical Partition...

4.4CVSS0.7AI score0.00546EPSS
Exploits0
CNNVD
CNNVD
added 2021/07/28 12:0 a.m.5 views

IBM Power System 安全漏洞

IBM Power System is a Power processor-based server computer from IBM in the United States. A security vulnerability exists in the IBM Power System that could compromise the PowerVM Logical Partition Migration LPM encryption key exchange protocol. If an attacker could exploit the vulnerability to ...

4.4CVSS5.3AI score0.00546EPSS
Exploits0References4
CNVD
CNVD
added 2021/07/20 12:0 a.m.25 views

IBM Power HMC Elevation of Privilege Vulnerability

IBM Power HMC is a set of graphical interface software for configuring and managing the Power System family of servers from IBM in the United States. The software is primarily used to manage hardware such as servers. IBM Power HMC has an elevation of privilege vulnerability that could be exploite...

8.4CVSS4.2AI score0.00305EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2021/05/25 6:40 a.m.16 views

Security Bulletin: This Power System update is being released to address CVE-2021-20487

Summary Power9: A new Power Systems firmware update is being released to address Common Vulnerabilities and Exposures issue number CVE-2021-20487. The Self Boot EngineSBE can be compromised from the service processor to allow injection of malicious code. An attacker that gains root access to the...

9.1CVSS1.5AI score0.0068EPSS
Exploits0Affected Software1
The Hacker News
The Hacker News
added 2021/03/01 10:11 a.m.8 views

Chinese Hackers Targeted India's Power Grid Amid Geopolitical Tensions

Amid heightened border tensions between India and China, cybersecurity researchers have revealed a concerted campaign against India's critical infrastructure, including the nation's power grid, from Chinese state-sponsored groups. The attacks, which coincided with the standoff between the two...

5.8AI score
Exploits0
CNNVD
CNNVD
added 2020/11/19 12:0 a.m.9 views

IBM i 安全漏洞

The IBM Power System is a Power processor-based server computer from IBM in the United States. A security vulnerability exists in IBM Power9 processor, which can be exploited by an attacker to obtain sensitive information from data in the L1 cache under the right circumstances...

5.1CVSS6.4AI score0.00387EPSS
Exploits0References37
CNVD
CNVD
added 2019/12/19 12:0 a.m.2 views

Denial of Service Vulnerability in Zhongyuan Huadian Digital-Analog Recording ZH-3D Dynamic Recording Device (CNVD-2020-01308)

Zhongyuan Huadian digital and analog recording ZH-3D dynamic recording device is a power system fault recording system primary voltage and current waveforms and secondary equipment action behavior, to achieve the power system fault analysis and fault ranging and positioning equipment. A denial of...

6.7AI score
Exploits0
CNVD
CNVD
added 2019/12/19 12:0 a.m.2 views

Denial of Service Vulnerability in Zhongyuan Huadian Digital-Analog Recording ZH-3D Dynamic Recording Device

Zhongyuan Huadian digital and analog recording ZH-3D dynamic recording device is a power system fault recording system primary voltage and current waveforms and secondary equipment action behavior, to achieve the power system fault analysis and fault ranging and positioning equipment. A denial of...

6.7AI score
Exploits0
CNVD
CNVD
added 2019/12/19 12:0 a.m.2 views

Denial of Service Vulnerability in FTR-100 Power System Dynamic Recording Device (CNVD-2020-01299)

FTR-100 Power System Dynamic Recording Device is a device for power system digital substation. A denial of service vulnerability exists in the FTR-100 Power System Dynamic Recording Device, which can be exploited by attackers to cause a denial of service...

6.7AI score
Exploits0
CNVD
CNVD
added 2019/12/19 12:0 a.m.1 views

Denial of Service Vulnerability in DPR-343-DA-G Power System Dynamic Recording Device of Guodian Nanrui Technology Co.

DPR-343-DA-G Power System Dynamic Recording Device is a fault recording device based on DL/T860 framework and applied in new generation intelligent substation. A denial of service vulnerability exists in the DPR-343-DA-G Power System Dynamic Recording Device of Guodian Nanrui Technology...

6.7AI score
Exploits0
CNVD
CNVD
added 2019/12/19 12:0 a.m.2 views

Denial of Service Vulnerability in DPR-343-DA-G Power System Dynamic Recording Device of Guodian Nanrui Science and Technology Co.(CNVD-2020-01585)

DPR-343-DA-G Power System Dynamic Recording Device is a fault recording device based on DL/T860 framework and applied in new generation intelligent substation. A denial-of-service vulnerability exists in the DPR-343-DA-G Power System Dynamic Recording Device of Guodian Nanrui Technology...

6.8AI score
Exploits0
Rows per page
Query Builder