Denial Of Service (DoS)

kernel is vulnerable to denial of service. An attacker can cause a use=after=free and OOPS in drivers/char/ipmi/ipmimsghandler.c by arranging for certain simultaneous execution of the code...

CVE-2020-11616

NVIDIA DGX servers, all BMC firmware versions prior to 3.38.30, contain a vulnerability in the AMI BMC firmware in which the Pseudo-Random Number Generator PRNG algorithm used in the JSOL package that implements the IPMI protocol is not cryptographically strong, which may lead to information...

Information disclosure

NVIDIA DGX servers, all BMC firmware versions prior to 3.38.30, contain a vulnerability in the AMI BMC firmware in which the Pseudo-Random Number Generator PRNG algorithm used in the JSOL package that implements the IPMI protocol is not cryptographically strong, which may lead to information...

CVE-2020-11616

NVIDIA DGX servers, all BMC firmware versions prior to 3.38.30, contain a vulnerability in the AMI BMC firmware in which the Pseudo-Random Number Generator PRNG algorithm used in the JSOL package that implements the IPMI protocol is not cryptographically strong, which may lead to information...

UBUNTU-CVE-2015-8739

The ipmifmtudpport function in epan/dissectors/packet-ipmi.c in the IPMI dissector in Wireshark 2.0.x before 2.0.1 improperly attempts to access a packet scope, which allows remote attackers to cause a denial of service assertion failure and application exit via a crafted packet...

CVE-2 0 1 4-8 2 7 2 vulnerability analysis: Dell Remote Control Card vulnerability in the Session-ID mechanism-vulnerability warning-the black bar safety net

! We recently found a Dell integrated Remote Control CardiDRACthe vulnerability, Dell integrated remote control card is integrated in the server on small devices. Hackers use this number for theCVE-2 0 1 4-8 2 7 2 vulnerabilities inlow permissions or not the authentication of the case, to enable ...

Dell iDRAC Weak SessionID Vulnerability (IPMI Protocol) - Active Check

Intelligent Platform Management Interface IPMI v1.5 SessionID SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description...

IPMI Default Credentials (IPMI Protocol) - Active Check

It was possible to find default password/username combinations for the Intelligent Platform Management Interface IPMI protocol. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Supermicro IPMI BMCs plaintext passwords exposed

Much has been written about the insecurity of the IPMI protocol present inside embedded baseboard management controllers BMCs. Serious vulnerabilities can be exploited to gain remote control over big servers running BMCs, in particular in hosting environments where the controllers help admins wit...

IPMI Cipher Suite 0 (Cipher Zero) Authentication Bypass Vulnerability (IPMI Protocol)

Intelligent Platform Management Interface IPMI services are prone to an authentication bypass vulnerability through the use of cipher suite 0 aka cipher zero. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...

IPMI Anonymous Login Enabled (IPMI Protocol)

The remote Intelligent Platform Management Interface IPMI service accepts anonymous logins. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if...

Cisco ACS 1121 Default Credentials

Cisco ACS 1121 hardware appliance uses OEM IBM xSeries server platform which includes a Baseboard Management Controller. The controller acquires a DHCP address on ethernet port and has default credentials enabled "USERID" and "PASSW0RD". BCM is accessible using the IPMI protocol via free tool suc...