CVE-2024-3411
CVE-2024-3411 describes insufficient randomness in IPMI Authenticated sessions, allowing an attacker on the BMC network to predict IPMI session IDs or BMC random values and hijack or replay sessions to issue arbitrary IPMI commands. Details across connected sources confirm this is a cross-vendor ...