2 matches found
CVE-2014-0860
The CVE-2014-0860 issue affects IBM BladeCenter components: AMM firmware before 3.66E, IMM firmware before 1.43, and IMM2 firmware before 4.15. The root cause is that administrative IPMI credentials are stored in plaintext within the firmware binaries, allowing an attacker with access to the chas...
CVE-2012-4838
IBM Flex System Chassis Management Module (CMM) and Integrated Management Module 2 (IMM2) are affected by CVE-2012-4838. Public descriptions indicate local users can obtain sensitive information (local accounts, SSH private keys, SSL/TLS private keys, SNMPv3 communities, and LDAP credentials) via...