Lucene search
+L

211 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2024/08/08 7:2 p.m.35 views

Security Bulletin: This Power System update is being released to address CVE-2024-41660

Summary The BMC's service location protocol SLP service is vulnerable to an attacker who has network access to the BMC causing a buffer overflow which could lead to arbitrary code execution on the BMC. Vulnerability Details CVEID:CVE-2024-41660 DESCRIPTION: OpenBMC slpd-lite is vulnerable to a...

9.8CVSS10AI score0.00856EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2024/08/06 10:31 p.m.18 views

Security Bulletin: This Power System update is being released to address CVE-2024-35124

Summary The BMC is vulnerable during the time it is connected to the network and does not yet have its "admin" account password set. Vulnerability Details CVEID:CVE-2024-35124 DESCRIPTION: During OpenBMC new installation, an attacker with network access gain administrative access even if the...

7.5CVSS7.7AI score0.00482EPSS
Exploits0
NVD
NVD
added 2024/07/31 8:15 p.m.35 views

CVE-2024-41660

slpd-lite is a unicast SLP UDP server. Any OpenBMC system that includes the slpd-lite package is impacted. Installing this package is the default when building OpenBMC. Nefarious users can send slp packets to the BMC using UDP port 427 to cause memory overflow issues within the slpd-lite daemon o...

9.8CVSS0.00856EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/07/31 7:37 p.m.19 views

CVE-2024-41660 slpd-lite unauthenticated memory corruption

slpd-lite is a unicast SLP UDP server. Any OpenBMC system that includes the slpd-lite package is impacted. Installing this package is the default when building OpenBMC. Nefarious users can send slp packets to the BMC using UDP port 427 to cause memory overflow issues within the slpd-lite daemon o...

9.8CVSS7.1AI score0.00856EPSS
Exploits0References1
OSV
OSV
added 2024/07/31 7:37 p.m.6 views

CVE-2024-41660 slpd-lite unauthenticated memory corruption

slpd-lite is a unicast SLP UDP server. Any OpenBMC system that includes the slpd-lite package is impacted. Installing this package is the default when building OpenBMC. Nefarious users can send slp packets to the BMC using UDP port 427 to cause memory overflow issues within the slpd-lite daemon o...

9.8CVSS7.2AI score0.00856EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/07/31 7:37 p.m.35 views

CVE-2024-41660 slpd-lite unauthenticated memory corruption

slpd-lite is a unicast SLP UDP server. Any OpenBMC system that includes the slpd-lite package is impacted. Installing this package is the default when building OpenBMC. Nefarious users can send slp packets to the BMC using UDP port 427 to cause memory overflow issues within the slpd-lite daemon o...

9.8CVSS0.00856EPSS
Exploits0References1
CVE
CVE
added 2024/07/31 7:37 p.m.66 views

CVE-2024-41660

CVE-2024-41660 affects OpenBMC slpd-lite, a unicast SLP UDP server. The root cause is a buffer overflow due to improper bounds checking in the slpd-lite daemon, allowing a remote attacker to overflow memory by sending crafted UDP packets to port 427 on the BMC. Documented impacts include memory c...

9.8CVSS9.6AI score0.00856EPSS
Exploits0References1
NVD
NVD
added 2024/06/27 6:15 p.m.27 views

CVE-2024-31916

IBM OpenBMC FW1050.00 through FW1050.10 BMCWeb HTTPS server component could disclose sensitive URI content to an unauthorized actor that bypasses authentication channels. IBM X-ForceID: 290026...

7.5CVSS0.0055EPSS
Exploits0References2
OSV
OSV
added 2024/06/27 6:15 p.m.4 views

CVE-2024-31916

IBM OpenBMC FW1050.00 through FW1050.10 BMCWeb HTTPS server component could disclose sensitive URI content to an unauthorized actor that bypasses authentication channels. IBM X-ForceID: 290026...

7.5CVSS5.7AI score
Exploits0References2
Cvelist
Cvelist
added 2024/06/27 5:45 p.m.30 views

CVE-2024-31916 IBM OpenBMC information disclosure

IBM OpenBMC FW1050.00 through FW1050.10 BMCWeb HTTPS server component could disclose sensitive URI content to an unauthorized actor that bypasses authentication channels. IBM X-ForceID: 290026...

7.5CVSS0.0055EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/06/27 5:45 p.m.17 views

CVE-2024-31916 IBM OpenBMC information disclosure

IBM OpenBMC FW1050.00 through FW1050.10 BMCWeb HTTPS server component could disclose sensitive URI content to an unauthorized actor that bypasses authentication channels. IBM X-ForceID: 290026...

7.5CVSS6.7AI score0.0055EPSS
Exploits0References2
CVE
CVE
added 2024/06/27 5:45 p.m.66 views

CVE-2024-31916

CVE-2024-31916 (IBM OpenBMC) affects OpenBMC versions FW1050.00–FW1050.10, where the BMCWeb HTTPS server component could disclose sensitive URI content to an unauthenticated user. Root cause: improper exposure in the HTTPS server that bypasses authentication channels. Impact is limited to sensiti...

7.5CVSS7.5AI score0.0055EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2024/06/27 12:0 a.m.12 views

PT-2024-24280 · Ibm · Ibm Openbmc

Name of the Vulnerable Software and Affected Versions: IBM OpenBMC versions FW1050.00 through FW1050.10 Description: The BMCWeb HTTPS server component in IBM OpenBMC could disclose sensitive URI content to an unauthorized actor that bypasses authentication channels. Recommendations: For versions...

7.5CVSS7AI score0.0055EPSS
Exploits0References3
IBM Security Bulletins
IBM Security Bulletins
added 2024/06/25 5:37 p.m.19 views

Security Bulletin: This Power System update is being released to address CVE-2024-31916

Summary This affects the BMC's HTTPS-based Redfish interface. Note the BMC's web-based ASMI interface uses the Redfish interface. Vulnerability Details CVEID:CVE-2024-31916 DESCRIPTION: IBM OpenBMC's BMCWeb HTTPS server component could disclose sensitive URI content to an unauthorized actor that...

7.5CVSS7.4AI score0.0055EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2024/06/25 5:22 p.m.18 views

Security Bulletin: This Power System update is being released to address CVE-2023-45857

Summary This affects the BMC's ASMi web application. Vulnerability Details CVEID:CVE-2023-45857 DESCRIPTION: Axios is vulnerable to cross-site request forgery, caused by improper validation of user-supplied input. By inserting the X-XSRF-TOKEN header using the secret XSRF-TOKEN cookie value in al...

6.5CVSS6.5AI score0.00556EPSS
Exploits1
IBM Security Bulletins
IBM Security Bulletins
added 2024/03/27 8:42 p.m.38 views

Security Bulletin: This Power System update is being released to address CVE 2020-10735

Summary BMC firmware version OP910 uses Python to help serve HTTPS requests but Python is not used to process the request body, so this access vector is not vulnerable the Python long integer vulnerability. A BMC administrator who uses Python from the BMC's command line is subject to this...

7.5CVSS7.6AI score0.03502EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2024/02/22 12:0 a.m.6 views

The vulnerability of the BMC implementation for Intel Server Product OpenBMC-based servers lies in the insufficient protection of registration data, allowing attackers to gain unauthorized access to protected information.

The vulnerability of the BMC implementation for Intel Server Product OpenBMC-based servers is related to insufficient protection of registration data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...

7.8CVSS5.9AI score0.00484EPSS
Exploits0References2
OSV
OSV
added 2024/02/14 2:15 p.m.3 views

CVE-2023-31189

Improper authentication in some IntelR Server Product OpenBMC firmware before version egs-1.09 may allow an authenticated user to enable escalation of privilege via local access...

8.8CVSS5.8AI score0.00213EPSS
Exploits0References1
NVD
NVD
added 2024/02/14 2:15 p.m.24 views

CVE-2023-32280

Insufficiently protected credentials in some IntelR Server Product OpenBMC firmware before versions egs-1.05 may allow an unauthenticated user to enable information disclosure via network access...

5.3CVSS5.1AI score0.00484EPSS
Exploits0References1
NVD
NVD
added 2024/02/14 2:15 p.m.15 views

CVE-2023-31189

Improper authentication in some IntelR Server Product OpenBMC firmware before version egs-1.09 may allow an authenticated user to enable escalation of privilege via local access...

8.8CVSS5.6AI score0.00213EPSS
Exploits0References1
Rows per page
Query Builder