CyberSec.Space Logo
Back to CVE Browser

CVE-2019-4169

CRITICAL
9.1
CVSS Severity Score
EPSS Score0.0290%
EPSS Percentile3.97th
PublishedAug 26, 2019
Last ModifiedNov 21, 2024

Vulnerability Description

IBM Open Power Firmware OP910 and OP920 could allow access to BMC via IPMI using default OpenBMC password even after BMC password was changed away from the default password. IBM X-Force ID: 158702.

Affected Platforms (CPE)

πŸ’»
Ibm

Open Power

= op910
πŸ’»
Ibm

Open Power

= op920

References & Advisories

πŸ”— http://www.ibm.com/support/docview.wss?uid=ibm10881209
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/158702
πŸ”— http://www.ibm.com/support/docview.wss?uid=ibm10881209
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/158702

Related Vulnerabilities

CVE-2018-10006347.2

The Open Microscopy Environment OMERO.server version 5.4.0 to 5.4.6 contains an Improper Access Control vulnerability in User mana...

CVE-2019-188426.1

A cross-site scripting (XSS) vulnerability in the configuration web interface of the Jinan USR IOT USR-WIFI232-S/T/G2/H Low Power ...

CVE-2017-56225.9

With OxygenOS before 4.0.3, when a charger is connected to a powered-off OnePlus 3 or 3T device, the platform starts with adbd ena...

CVE-2017-149705.9

In lib/ofp-util.c in Open vSwitch (OvS) before 2.8.1, there are multiple memory leaks while parsing malformed OpenFlow group mod m...