CVE-2014-2955
published 2014-07-14CVE-2014-2955: Raritan PX before 1.5.11 on DPXR20A-16 devices allows remote attackers to bypass authentication and execute arbitrary IPMI commands by using cipher suite 0…
PriorityP263critical10CVSS 2.0
AVNACLAuNCCICAC
EPSS
2.77%
84.5th percentile
Raritan PX before 1.5.11 on DPXR20A-16 devices allows remote attackers to bypass authentication and execute arbitrary IPMI commands by using cipher suite 0 (aka cipher zero) and an arbitrary password.
Affected
15 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| raritan | px | <= 1.5.8 | — |
| raritan | px | — | — |
| raritan | px | — | — |
| raritan | px | — | — |
| raritan | px | — | — |
| raritan | px | — | — |
| raritan | px | — | — |
| raritan | px | — | — |
| raritan | px | — | — |
| raritan | px | — | — |
| raritan | px | — | — |
| raritan | px | — | — |
| raritan | px | — | — |
| raritan | px | — | — |
| raritan | px | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2014-07-14
Published