Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The IBM Power 9 OP910, OP920, and FW910 boot firmware's bootloader is responsible for loading and validating the initial boot firmware image that drives the rest of the system's hardware initialization. The bootloader firmware contains a buffer overflow vulnerability such that, if an attacker were able to replace the initial boot firmware image with a very carefully crafted and sufficiently large, malicious replacement, it could cause the bootloader, during the load of that image, to overwrite its own instruction memory and circumvent secure boot protections, install trojans, etc. IBM X-Force ID: 154345.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
多款IBM产品缓冲区错误漏洞
Vulnerability Description
IBM Power System S922等都是美国IBM公司的一款基于Power处理器的服务器设备。 多款IBM产品中的boot loader存在缓冲区错误漏洞。攻击者可利用该漏洞覆盖bootloader的指令内存,绕过安全启动保护,安装木马程序等。以下产品受到影:使用FW910版本固件的IBM Power System S922 (9009-22A);使用FW910版本固件的Power System H922 (9223-22H);使用FW910版本固件的Power System S914 (9009
CVSS Information
N/A
Vulnerability Type
N/A