Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
IBM OpenBMC information disclosure
Vulnerability Description
IBM OpenBMC FW1050.00 through FW1050.10 BMCWeb HTTPS server component could disclose sensitive URI content to an unauthorized actor that bypasses authentication channels. IBM X-ForceID: 290026.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Vulnerability Type
使用候选路径或通道进行的认证绕过
Vulnerability Title
IBM OpenBMC 安全漏洞
Vulnerability Description
IBM OpenBMC是美国国际商业机器(IBM)公司的一个 Linux 发行版,用于管理服务器、架顶式交换机或 RAID 设备等设备的控制器。 IBM OpenBMC FW1050.00 至 FW1050.10 版本存在安全漏洞,该漏洞源于 BMCWeb HTTPS 服务器组件可能会向绕过身份验证渠道的未经授权的行为者泄露敏感 URI 内容。
CVSS Information
N/A
Vulnerability Type
N/A