Security Bulletin: Weak Key Vulnerability in Remote Supervisor Adapter II firmware (CVE-2012-2187) - IBM System x3650, System x3850 M2, System x3950 M2

Summary Customers using secure network protocols such as https and ssh with the Remote Supervisor Adapter II are impacted by a recently discovered weakness in the generation of RSA keys that are used with those protocols. The weakness in the key generation process may allow the corresponding...

CVE-2012-2187

IBM Remote Supervisor Adapter II firmware for System x3650, x3850 M2, and x3950 M2 1.13 and earlier generates weak RSA keys, which makes it easier for attackers to defeat cryptographic protection mechanisms via unspecified vectors...

CVE-2012-2187

CVE-2012-2187 affects IBM Remote Supervisor Adapter II firmware for System x3650, x3850 M2, and x3950 M2 (versions 1.13 and earlier). The root cause is weak RSA key generation in the firmware, which may allow an attacker to remotely compromise the corresponding private key when using secure proto...

IBM RSA Default Credentials

The IBM Remote Supervisor Adapter is configured to use the default credentials to control access. Knowing these, an attacker can gain total control of the machine. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid50348; scriptversion"1.12"; scriptcvsdate"Date: 2018/11/...

IBM Remote Supervisor Adapter Detection (HTTP)

The remote web server has been fingerprinted as one embedded in IBM Remote Supervisor Adapter RSA cards. C Tenable Network Security, Inc. include"compat.inc"; ifdescription scriptid45356; scriptversion "$Revision: 1.10 $"; scriptnameenglish:"IBM Remote Supervisor Adapter Detection HTTP";...