Lucene search

[email protected]NVD:CVE-2013-6718

HistoryDec 01, 2013 - 4:31 a.m.

CVE-2013-6718

2013-12-0104:31:49

CWE-310

[email protected]

web.nvd.nist.gov

CVSS2

6.4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

AI Score

6.6

Confidence

Low

EPSS

0.003

Percentile

68.6%

JSON

The Advanced Management Module (AMM) with firmware 3.64B, 3.64C, and 3.64G for IBM BladeCenter systems allows remote attackers to discover account names and passwords via use of an unspecified interface.

Affected configurations

Nvd

Node

ibmadvanced_management_module_firmwareMatch3.64bbet64b

ibmadvanced_management_module_firmwareMatch3.64bbet64c

ibmadvanced_management_module_firmwareMatch3.64bbet64g

ibmadvanced_management_module_firmwareMatch3.64bpeo64b

ibmadvanced_management_module_firmwareMatch3.64bpeo64c

ibmadvanced_management_module_firmwareMatch3.64bpeo64g

ibmadvanced_management_module_firmwareMatch3.64bpet64b

ibmadvanced_management_module_firmwareMatch3.64bpet64c

ibmadvanced_management_module_firmwareMatch3.64bpet64g

VendorProductVersionCPE
ibmadvanced_management_module_firmware3.64cpe:2.3:o:ibm:advanced_management_module_firmware:3.64:bbet64b:*:*:*:*:*:*
ibmadvanced_management_module_firmware3.64cpe:2.3:o:ibm:advanced_management_module_firmware:3.64:bbet64c:*:*:*:*:*:*
ibmadvanced_management_module_firmware3.64cpe:2.3:o:ibm:advanced_management_module_firmware:3.64:bbet64g:*:*:*:*:*:*
ibmadvanced_management_module_firmware3.64cpe:2.3:o:ibm:advanced_management_module_firmware:3.64:bpeo64b:*:*:*:*:*:*
ibmadvanced_management_module_firmware3.64cpe:2.3:o:ibm:advanced_management_module_firmware:3.64:bpeo64c:*:*:*:*:*:*
ibmadvanced_management_module_firmware3.64cpe:2.3:o:ibm:advanced_management_module_firmware:3.64:bpeo64g:*:*:*:*:*:*
ibmadvanced_management_module_firmware3.64cpe:2.3:o:ibm:advanced_management_module_firmware:3.64:bpet64b:*:*:*:*:*:*
ibmadvanced_management_module_firmware3.64cpe:2.3:o:ibm:advanced_management_module_firmware:3.64:bpet64c:*:*:*:*:*:*
ibmadvanced_management_module_firmware3.64cpe:2.3:o:ibm:advanced_management_module_firmware:3.64:bpet64g:*:*:*:*:*:*

Vendor	Product	Version	CPE
ibm	advanced_management_module_firmware	3.64	cpe:2.3:o:ibm:advanced_management_module_firmware:3.64:bbet64b::::::
ibm	advanced_management_module_firmware	3.64	cpe:2.3:o:ibm:advanced_management_module_firmware:3.64:bbet64c::::::
ibm	advanced_management_module_firmware	3.64	cpe:2.3:o:ibm:advanced_management_module_firmware:3.64:bbet64g::::::
ibm	advanced_management_module_firmware	3.64	cpe:2.3:o:ibm:advanced_management_module_firmware:3.64:bpeo64b::::::
ibm	advanced_management_module_firmware	3.64	cpe:2.3:o:ibm:advanced_management_module_firmware:3.64:bpeo64c::::::
ibm	advanced_management_module_firmware	3.64	cpe:2.3:o:ibm:advanced_management_module_firmware:3.64:bpeo64g::::::
ibm	advanced_management_module_firmware	3.64	cpe:2.3:o:ibm:advanced_management_module_firmware:3.64:bpet64b::::::
ibm	advanced_management_module_firmware	3.64	cpe:2.3:o:ibm:advanced_management_module_firmware:3.64:bpet64c::::::
ibm	advanced_management_module_firmware	3.64	cpe:2.3:o:ibm:advanced_management_module_firmware:3.64:bpet64g::::::

References

osvdb.org/100397

secunia.com/advisories/55921

www.ibm.com/connections/blogs/PSIRT/entry/security_bulletin_ibm_bladecenter_advanced_management_module_account_information_exposure_cve_2013_6718

www.securityfocus.com/bid/64032

exchange.xforce.ibmcloud.com/vulnerabilities/89174

CVSS2

6.4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

AI Score

6.6

Confidence

Low

EPSS

0.003

Percentile

68.6%

JSON

Related for NVD:CVE-2013-6718

prion1 cve1 cvelist1 ibm3