CVE-2013-4786: CVE-2013-4786

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2013-4786

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

The IPMI 2.0 specification supports RMCP+ Authenticated Key-Exchange Protocol (RAKP) authentication, which allows remote attackers to obtain password hashes and conduct offline password guessing attacks by obtaining the HMAC from a RAKP message 2 response from a BMC.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Intelligent Platform Management Interface 信任管理问题漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Intelligent Platform Management Interface（IPMI,智能平台管理接口）是一种Intel架构的企业系统的周边设备所采用的一种工业标准。IPMI亦是一个开放的免费标准，用户无需支付额外的费用即可使用此标准。IPMI 能够横跨不同的操作系统、固件和硬件平台，可以智能的监控、控制和自动回报大量服务器的运作状况，以降低服务器系统成本。 Intelligent Platform Management Interface（IPMI,智能平台管理接口）2.0版本规范支持的RMCP

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2013-4786

#	POC Description	Source Link	Shenlong Link
1	CVE-2013-4786 Go exploitation tool	https://github.com/fin3ss3g0d/CosmicRakp	POC Details

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2013-4786

Please Login to view more intelligence information

🔗 https://security.netapp.com/advisory/ntap-20190919-0005/x_refsource_CONFIRM
🔗 https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-c04197764x_refsource_CONFIRM
🔗 http://fish2.com/ipmi/remote-pw-cracking.htmlx_refsource_MISC
🔗 http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.htmlx_refsource_CONFIRM
🔗 https://community.rapid7.com/community/metasploit/blog/2013/07/02/a-penetration-testers-guide-to-ipmix_refsource_MISC
🔗 https://nvidia.custhelp.com/app/answers/detail/a_id/5010x_refsource_CONFIRM
🔗 http://marc.info/?l=bugtraq&m=139653661621384&w=2vendor-advisoryx_refsource_HP
https://nvd.nist.gov/vuln/detail/CVE-2013-4786

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2013-4786

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

I. Basic Information for CVE-2013-4786

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2013-4786

III. Intelligence Information for CVE-2013-4786

IV. Related Vulnerabilities

V. Comments for CVE-2013-4786

Leave a comment