CVE-2013-4037IBM Bladecenter vulnerability

3 documents3 sources
Severity
4.3MEDIUMNVD
EPSS
0.2%
top 55.49%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Bladecenter
Timeline
PublishedAug 9
Latest updateMay 17

Description

The RAKP protocol support in the Intelligent Platform Management Interface (IPMI) implementation in Integrated Management Module (IMM) and Integrated Management Module II (IMM2) on IBM BladeCenter, Flex System, System x iDataPlex, and System x3### servers sends a password hash to the client, which makes it easier for remote attackers to obtain access via a brute-force attack.

CVSS vector

AV:N/AC:M/C:N/I:P/A:NExploitability: 8.6 | Impact: 2.9

Affected Packages1 packages

NVDibm/bladecenter5 versions+4

🔴Vulnerability Details

2
GHSA
GHSA-8wf4-vh2f-5v75: The RAKP protocol support in the Intelligent Platform Management Interface (IPMI) implementation in Integrated Management Module (IMM) and Integrated2022-05-17
CVEList
CVE-2013-4037: The RAKP protocol support in the Intelligent Platform Management Interface (IPMI) implementation in Integrated Management Module (IMM) and Integrated2013-08-09
CVE-2013-4037 — IBM Bladecenter vulnerability | cvebase