Lucene search

IbmCVE-2014-4768

HistoryJun 28, 2015 - 10:59 p.m.

CVE-2014-4768

2015-06-2822:59:00

ibm

web.nvd.nist.gov

ibm

uefi

flex system

x880 x6

x3850 x6

x3950 x6

denial of service

cve-2014-4768

CVSS2

2.1

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:H/Au:S/C:N/I:N/A:P

AI Score

6.3

Confidence

Low

EPSS

0.001

Percentile

48.5%

JSON

IBM Unified Extensible Firmware Interface (UEFI) on Flex System x880 X6, System x3850 X6, and System x3950 X6 devices allows remote authenticated users to cause an unspecified temporary denial of service by using privileged access to enable a legacy boot mode.

Affected configurations

Nvd

Node

ibmuefi

AND

ibmflex_system_x3850_x6

ibmflex_system_x3950_x6

ibmflex_system_x880_x6

VendorProductVersionCPE
ibmuefi*cpe:2.3:o:ibm:uefi:*:*:*:*:*:*:*:*
ibmflex_system_x3850_x6*cpe:2.3:h:ibm:flex_system_x3850_x6:*:*:*:*:*:*:*:*
ibmflex_system_x3950_x6*cpe:2.3:h:ibm:flex_system_x3950_x6:*:*:*:*:*:*:*:*
ibmflex_system_x880_x6*cpe:2.3:h:ibm:flex_system_x880_x6:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ibm	uefi	*	cpe:2.3:o:ibm:uefi::::::::
ibm	flex_system_x3850_x6	*	cpe:2.3:h:ibm:flex_system_x3850_x6::::::::
ibm	flex_system_x3950_x6	*	cpe:2.3:h:ibm:flex_system_x3950_x6::::::::
ibm	flex_system_x880_x6	*	cpe:2.3:h:ibm:flex_system_x880_x6::::::::

References

www.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5098278

CVSS2

2.1

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:H/Au:S/C:N/I:N/A:P

AI Score

6.3

Confidence

Low

EPSS

0.001

Percentile

48.5%

JSON

Related for CVE-2014-4768