0.001 Low
EPSS
Percentile
28.6%
fwupd is vulnerable to information disclosure. The vulnerability exists when creating an OPERATOR user account on the BMC, allowing an attacker to read the the configuration files on the system.
github.com/fwupd/fwupd/commit/ea676855f2119e36d433fbd2ed604039f53b2091
security-tracker.debian.org/tracker/CVE-2022-3287