Описание
It's been found that multiple functions in ipmitool before 1.8.19 neglect proper checking of the data received from a remote LAN party, which may lead to buffer overflows and potentially to remote code execution on the ipmitool side. This is especially dangerous if ipmitool is run as a privileged user. This problem is fixed in version 1.8.19.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 1.8.18-5ubuntu0.2 |
| devel | needed | |
| eoan | ignored | end of life |
| esm-apps/bionic | released | 1.8.18-5ubuntu0.2 |
| esm-apps/focal | released | 1.8.18-8ubuntu0.1 |
| esm-apps/jammy | not-affected | 1.8.18-10.1 |
| esm-apps/noble | needed | |
| esm-apps/xenial | released | 1.8.16-3ubuntu0.2+esm1 |
| esm-infra-legacy/trusty | DNE | |
| focal | released | 1.8.18-8ubuntu0.1 |
Показывать по
EPSS
6.5 Medium
CVSS2
7.7 High
CVSS3
Связанные уязвимости
It's been found that multiple functions in ipmitool before 1.8.19 neglect proper checking of the data received from a remote LAN party, which may lead to buffer overflows and potentially to remote code execution on the ipmitool side. This is especially dangerous if ipmitool is run as a privileged user. This problem is fixed in version 1.8.19.
It's been found that multiple functions in ipmitool before 1.8.19 neglect proper checking of the data received from a remote LAN party, which may lead to buffer overflows and potentially to remote code execution on the ipmitool side. This is especially dangerous if ipmitool is run as a privileged user. This problem is fixed in version 1.8.19.
It's been found that multiple functions in ipmitool before 1.8.19 negl ...
EPSS
6.5 Medium
CVSS2
7.7 High
CVSS3