2 matches found
Security Bulletin: This Power System update is being released to address CVE-2019-16649 and CVE-2019-16650
Summary POWER8 and POWER9: In response to security issues with virtual media, new Power System firmware updates are being released to address Common Vulnerabilities and Exposures issue numbers CVE-2019-16649 and CVE-2019-16650. Vulnerability Details CVEID:CVE-2019-16649 DESCRIPTION: Multiple...
CVE-2019-16649
CVE-2019-16649 affects Supermicro H11/H12/M11/X9/X10/X11 products. The issue stems from a combination of encryption and authentication problems in the virtual media service, enabling capture of BMC credentials and data transferred over virtual media devices. Attackers who obtain credentials can c...