Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2013-4031

Опубликовано: 09 авг. 2013
Источник: nvd
CVSS2: 10
EPSS Низкий

Описание

The Intelligent Platform Management Interface (IPMI) implementation in Integrated Management Module (IMM) and Integrated Management Module II (IMM2) on IBM BladeCenter, Flex System, System x iDataPlex, and System x3### servers has a default password for the IPMI user account, which makes it easier for remote attackers to perform power-on, power-off, or reboot actions, or add or modify accounts, via unspecified vectors.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:h:ibm:bladecenter:hs22:*:*:*:*:*:*:*
cpe:2.3:h:ibm:bladecenter:hs22v:*:*:*:*:*:*:*
cpe:2.3:h:ibm:bladecenter:hs23:*:*:*:*:*:*:*
cpe:2.3:h:ibm:bladecenter:hs23e:*:*:*:*:*:*:*
cpe:2.3:h:ibm:bladecenter:hx5:*:*:*:*:*:*:*
cpe:2.3:h:ibm:flex_system_x220_compute_node:-:*:*:*:*:*:*:*
cpe:2.3:h:ibm:flex_system_x240_compute_node:-:*:*:*:*:*:*:*
cpe:2.3:h:ibm:flex_system_x440_compute_node:-:*:*:*:*:*:*:*
cpe:2.3:h:ibm:system_x_idataplex_dx360_m2_server:-:*:*:*:*:*:*:*
cpe:2.3:h:ibm:system_x_idataplex_dx360_m3_server:-:*:*:*:*:*:*:*
cpe:2.3:h:ibm:system_x_idataplex_dx360_m4_server:-:*:*:*:*:*:*:*
cpe:2.3:h:ibm:system_x3100_m4:-:*:*:*:*:*:*:*
cpe:2.3:h:ibm:system_x3200_m3:-:*:*:*:*:*:*:*
cpe:2.3:h:ibm:system_x3250_m3:-:*:*:*:*:*:*:*
cpe:2.3:h:ibm:system_x3250_m4:-:*:*:*:*:*:*:*
cpe:2.3:h:ibm:system_x3400_m2:-:*:*:*:*:*:*:*
cpe:2.3:h:ibm:system_x3400_m3:-:*:*:*:*:*:*:*
cpe:2.3:h:ibm:system_x3500_m2:-:*:*:*:*:*:*:*
cpe:2.3:h:ibm:system_x3500_m3:-:*:*:*:*:*:*:*
cpe:2.3:h:ibm:system_x3500_m4:-:*:*:*:*:*:*:*
cpe:2.3:h:ibm:system_x3530_m4:-:*:*:*:*:*:*:*
cpe:2.3:h:ibm:system_x3550_m2:-:*:*:*:*:*:*:*
cpe:2.3:h:ibm:system_x3550_m3:-:*:*:*:*:*:*:*
cpe:2.3:h:ibm:system_x3550_m4:-:*:*:*:*:*:*:*
cpe:2.3:h:ibm:system_x3620_m3:-:*:*:*:*:*:*:*
cpe:2.3:h:ibm:system_x3630_m3:-:*:*:*:*:*:*:*
cpe:2.3:h:ibm:system_x3630_m4:-:*:*:*:*:*:*:*
cpe:2.3:h:ibm:system_x3650_m2:-:*:*:*:*:*:*:*
cpe:2.3:h:ibm:system_x3650_m3:-:*:*:*:*:*:*:*
cpe:2.3:h:ibm:system_x3650_m4:-:*:*:*:*:*:*:*
cpe:2.3:h:ibm:system_x3690_x5:-:*:*:*:*:*:*:*
cpe:2.3:h:ibm:system_x3750_m4:-:*:*:*:*:*:*:*
cpe:2.3:h:ibm:system_x3850_x5:-:*:*:*:*:*:*:*
cpe:2.3:h:ibm:system_x3950_x5:-:*:*:*:*:*:*:*

EPSS

Процентиль: 85%
0.02507
Низкий

10 Critical

CVSS2

Дефекты

CWE-255

Связанные уязвимости

github логотип

GHSA-7p2w-5xvj-v699

github
больше 3 лет назад

The Intelligent Platform Management Interface (IPMI) implementation in Integrated Management Module (IMM) and Integrated Management Module II (IMM2) on IBM BladeCenter, Flex System, System x iDataPlex, and System x3### servers has a default password for the IPMI user account, which makes it easier for remote attackers to perform power-on, power-off, or reboot actions, or add or modify accounts, via unspecified vectors.

EPSS

Процентиль: 85%
0.02507
Низкий

10 Critical

CVSS2

Дефекты

CWE-255