#VU89748 Cryptographic issues in IBM Corporation products - CVE-2014-0860

Cybersecurity Help s.r.o.

Published: 2024-05-22

Vulnerability identifier: #VU89748

Vulnerability risk: Medium

CVSSv4.0: 2.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2014-0860

CWE-ID: CWE-310

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
IBM BladeCenter Advanced Management Module
Server applications / Other server solutions
IBM Integrated Management Module
Other software / Other software solutions
Integrated Management Module II (IMM2)
Other software / Other software solutions

Vendor: IBM Corporation

Description

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to containment of cleartext IPMI credentials. A remote attacker can execute arbitrary IPMI commands, and consequently establish a blade remote-control session, by leveraging access to (1) the chassis internal network or (2) the Ethernet-over-USB interface.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

IBM BladeCenter Advanced Management Module: before 3.66E

IBM Integrated Management Module: before 1.43

Integrated Management Module II (IMM2): before 4.15

External links
https://www.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5095840
https://exchange.xforce.ibmcloud.com/vulnerabilities/90880

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Cryptographic issues in IBM BladeCenter Advanced Management Module (AMM), Integrated Management Module (IMM), and Integrated Management Module 2 (IMM2)