Lucene search
K

145 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2023/02/20 3:46 p.m.39 views

Security Bulletin: This Power System update is being released to address CVE-2022-3435

Summary POWER10: In response to a security issue with ipv4 network connections, a new Power System firmware update is being released to address Common Vulnerabilities and Exposures issue number CVE 2022-3435. Vulnerability Details CVEID:CVE-2022-3435 DESCRIPTION: Linux Kernel could allow a remote...

4.3CVSS5.8AI score0.03681EPSS
Exploits0Affected Software7
SUSE CVE
SUSE CVE
added 2023/02/15 5:46 a.m.2 views

SUSE CVE-2012-2395

Incomplete blacklist vulnerability in actionpower.py in Cobbler 2.2.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the 1 username or 2 password fields to the powersystem method in the xmlrpc API...

7.5CVSS8AI score0.05555EPSS
Exploits1References7
IBM Security Bulletins
IBM Security Bulletins
added 2022/12/05 11:45 p.m.54 views

Security Bulletin: This Power System update is being released to address multiple CVEs for vTPM1.2

Summary This update addresses multiple CVEs that impacts any VM configured with a virtual trusted platform module vTPM version 1.2 Vulnerability Details CVEID:CVE-2018-5407 DESCRIPTION: Multiple SMT/Hyper-Threading architectures and processors could allow a local attacker to obtain sensitive...

7.5CVSS6.7AI score0.70561EPSS
Exploits8
IBM Security Bulletins
IBM Security Bulletins
added 2022/12/05 7:52 p.m.32 views

Security Bulletin: This Power System update is being released to address CVE-2021-3746

Summary A security problem for CVE-2021-3746 has been resolved which affects any VM configured with a virtual trusted platform module vTPM version 2. Vulnerability Details CVEID:CVE-2021-3746 DESCRIPTION: libtpms is vulnerable to a denial of service, caused by an out-of-bounds access flaw. By...

6.5CVSS6.7AI score0.00894EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2022/12/05 7:46 p.m.37 views

Security Bulletin: This Power System update is being released to address CVE 2021-45486

Summary A security problem was fixed for the Virtualization Management Interface VMI for vulnerability CVE-2021-45486 that could allow a remote attacker to reveal sensitive information Vulnerability Details CVEID:CVE-2021-45486 DESCRIPTION: Linux Kernel could allow a local attacker to obtain...

3.5CVSS5.8AI score0.00368EPSS
Exploits0
CNVD
CNVD
added 2022/10/10 12:0 a.m.21 views

Generex UPS Adapter CS141 Command Execution Vulnerability

Generex UPS Adapter CS141 is a UPS Uninterruptible Power System adapter from Generex, a German company.A command execution vulnerability exists in Generex UPS Adapter CS141 versions prior to 2.08, which originates from the web of runupdate in /usr/bin/gxservice -update.sh interface fails to...

9.1CVSS5.9AI score0.02237EPSS
Exploits2References1
IBM Security Bulletins
IBM Security Bulletins
added 2022/09/20 3:19 p.m.102 views

Security Bulletin: This Power System update is being released to address CVE 2022-0778

Summary POWER9: In response to a security issue with network connections, a new Power System firmware update is being released to address Common Vulnerabilities and Exposures issue number CVE 2022-0778. Vulnerability Details CVEID:CVE-2022-0778 DESCRIPTION: OpenSSL is vulnerable to a denial of...

7.5CVSS7.8AI score0.70561EPSS
Exploits2Affected Software2
IBM Security Bulletins
IBM Security Bulletins
added 2022/08/19 11:53 p.m.48 views

Security Bulletin: Power Systems Firmware affected by vulnerability in OpenSSL (CVE-2016-0797)

Summary Power Systems Firmware affected by vulnerability in OpenSSL CVE-2016-0797 Vulnerability Details CVEID: CVE-2016-0797 DESCRIPTION: OpenSSL is vulnerable to a denial of service, caused by a NULL pointer dereference in the BNhex2bn/BNdec2bn function. An attacker could exploit this...

7.5CVSS7.4AI score0.27022EPSS
Exploits1Affected Software3
IBM Security Bulletins
IBM Security Bulletins
added 2022/08/19 5:50 p.m.44 views

Security Bulletin: This Power System update is being released to address CVE-2019-16649 and CVE-2019-16650

Summary POWER8 and POWER9: In response to security issues with virtual media, new Power System firmware updates are being released to address Common Vulnerabilities and Exposures issue numbers CVE-2019-16649 and CVE-2019-16650. Vulnerability Details CVEID:CVE-2019-16649 DESCRIPTION: Multiple...

10CVSS9.6AI score0.02163EPSS
Exploits0Affected Software6
CNNVD
CNNVD
added 2022/08/12 12:0 a.m.7 views

Ormazabal ekorCCP 和 ekorRCI 资源管理错误漏洞

Ormazabal is a family of power system management products. A security vulnerability exists in Ormazabal ekorCCP and ekorRCI, no information is available at this time, please stay tuned to CNNVD or the vendor announcement...

6.5CVSS6.5AI score0.00482EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/08/12 12:0 a.m.4 views

Ormazabal ekorCCP 和 ekorRCI 安全漏洞

Ormazabal is a family of power system management products. A security vulnerability exists in Ormazabal ekorCCP and ekorRCI. No information about this vulnerability is available at this time, so please stay tuned to CNNVD or the vendor announcement...

8.2CVSS7.3AI score0.00485EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/08/01 12:0 a.m.3 views

Ormazabal 安全漏洞

Ormazabal is a family of power system management products. A security vulnerability exists in Ormazabal. No information about this vulnerability is available at this time, so please stay tuned to CNNVD or the vendor announcement...

6.5CVSS6.5AI score0.00284EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/08/01 12:0 a.m.4 views

Ormazabal 安全漏洞

Ormazabal is a family of power system management products. A security vulnerability exists in Ormazabal. No information about this vulnerability is available at this time, so please stay tuned to CNNVD or the vendor announcement...

7.3CVSS5.8AI score0.00165EPSS
Exploits0References3
IBM Security Bulletins
IBM Security Bulletins
added 2022/07/15 5:21 p.m.29 views

Security Bulletin: An attacker that gains service access to the FSP (POWER9 only) or gains admin authority to a partition can compromise partition firmware.

Summary PowerVM partition firmware is the portion that executes in each partition during boot. On POWER9 systems an attacker that gains service access to the FSP can compromise partition firmware for any partition configured on the system. On all affected systems an attacker that gains admin...

7.6CVSS1.8AI score0.00634EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2022/06/29 10:27 p.m.33 views

Security Bulletin: Power System Firmware is affected by openssl vulnerabilities(CVE-2013-4353, CVE -2013-6449)

Summary Power System Firmware is affected by openssl vulnerabilities. Vulnerability Details CVE ID: CVE-2013-4353 DESCRIPTION: A carefully crafted invalid TLS handshake could crash OpenSSL with a NULL pointer exception. A malicious server could use this flaw to crash a connecting client. This iss...

4.3CVSS7.6AI score0.21174EPSS
Exploits0Affected Software1
CNNVD
CNNVD
added 2022/06/21 12:0 a.m.5 views

IBM Power System 安全漏洞

The IBM Power System is a Power processor-based server computer from IBM in the United States. A security vulnerability exists in the IBM Power System, which arises from a pre-production kernel package that can be bootstrapped by grub in Secure Boot Mode. These kernel builds do not have the Secur...

8.2CVSS7.8AI score0.00265EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/05/24 12:0 a.m.3 views

IBM Power System 访问控制错误漏洞

The IBM Power System is a Power processor-based server computer from IBM in the United States. A security vulnerability exists in the IBM Power System that originates from the FSP being susceptible to unauthenticated logins via the serial port/TTY interface. The following products and versions ar...

6.8CVSS6.6AI score0.00246EPSS
Exploits0References4
IBM Security Bulletins
IBM Security Bulletins
added 2022/05/23 11:53 a.m.38 views

Security Bulletin: This Power System update is being released to address CVE-2020-1968

Summary POWER9: In response to a security issue with FSP's ASMi web GUI connection via OpenSSL a new Power System firmware update is being released to address Common Vulnerabilities and Exposures issue number CVE-2020-1968 Vulnerability Details CVEID: CVE-2020-1968 DESCRIPTION: OpenSSL could allo...

4.3CVSS1AI score0.04803EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/05/23 11:34 a.m.32 views

Security Bulletin: This Power System update is being released to address CVE 2022-22309

Summary POWER8/POWER9: The POWER systems FSP is vulnerable to unauthenticated logins through the physical serial port/TTY interface. This vulnerability can be more critical if the serial port is connected to a serial-over-lan device. In response to this security issue, a new Power System firmware...

6.8CVSS0.5AI score0.00246EPSS
Exploits0Affected Software2
IBM Security Bulletins
IBM Security Bulletins
added 2022/05/10 10:46 p.m.12 views

Security Bulletin: This Power System update is being released to address CVE 2021-29847

Summary POWER8: In response to a security issue with BMC's configuration, a new Power System firmware update is being released to address Common Vulnerabilities and Exposures issue number CVE 2019-29847. Vulnerability Details CVEID:CVE-2021-29847 DESCRIPTION: BMC firmware configuration changed to...

5.9CVSS6AI score0.0099EPSS
Exploits0Affected Software1
Rows per page
Query Builder