Design/Logic Flaw

Integrated Management Module II IMM2 on IBM Flex System, NeXtScale, System x3xxx, and System x iDataPlex systems might allow remote authenticated users to obtain sensitive account information via vectors related to generated Service Advisor data FFDC. IBM X-Force ID: 91149...

CVE-2014-0882

CVE-2014-0882 affects IBM IMM2 (Integrated Management Module II) across Flex System x220/x222/x240/x440, NeXtScale nx360 M4, System x3100/M4, x3250/M4, x3500/M4, x3530/M4, x3550/M4, x3630/M4, x3650/M4, x3750/M4, and x iDataPlex dx360 M4, where certain configurations may cause generated Service Ad...

Default credentials

The Intelligent Platform Management Interface IPMI implementation in Integrated Management Module IMM on IBM BladeCenter, Flex System, System x iDataPlex, and System x3 servers uses cleartext for password storage, which allows context-dependent attackers to obtain sensitive information by reading...

CVE-2013-4038

The CVE-2013-4038 issue affects IBM IMM/IMM2 IPMI implementations (IBM BladeCenter, Flex System, System x iDataPlex, System x3###). Root cause: passwords for user accounts are stored in clear text in the IMM filesystem, enabling an attacker with access to the IMM OS to view credentials and potent...