CVE-2019-4169
8.1
CVSS:3.0/S:U/UI:N/C:H/AV:A/I:H/AC:L/A:N/PR:N/E:U/RL:O/RC:C
Summary
IBM Open Power Firmware OP910 and OP920 could allow access to BMC via IPMI using default OpenBMC password even after BMC password was changed away from the default password. IBM X-Force ID: 158702.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| IBM | P9 OpenPOWER | OP920 | affected |
| IBM | P9 OpenPower | OP910 | affected |
Weaknesses
- Obtain Information
ADP Enrichment
CVE Program Container
Additional References
- http://www.ibm.com/support/docview.wss?uid=ibm10881209
- https://exchange.xforce.ibmcloud.com/vulnerabilities/158702
References
- http://www.ibm.com/support/docview.wss?uid=ibm10881209
- https://exchange.xforce.ibmcloud.com/vulnerabilities/158702
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.