CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2014-2955

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1260%
EPSS Percentile43.41th
Published2014年7月14日
Last Modified2026年5月6日

Vulnerability Description

Raritan PX before 1.5.11 on DPXR20A-16 devices allows remote attackers to bypass authentication and execute arbitrary IPMI commands by using cipher suite 0 (aka cipher zero) and an arbitrary password.

Affected Platforms (CPE)

💻
Raritan

Px

<= 1.5.8
💻
Raritan

Px

= 1.0
💻
Raritan

Px

= 1.0.4
💻
Raritan

Px

= 1.1
💻
Raritan

Px

= 1.1.6
💻
Raritan

Px

= 1.2
💻
Raritan

Px

= 1.2.5
💻
Raritan

Px

= 1.2.7
💻
Raritan

Px

= 1.3
💻
Raritan

Px

= 1.3.1
💻
Raritan

Px

= 1.3.5
💻
Raritan

Px

= 1.4.1
💻
Raritan

Px

= 1.5
💻
Raritan

Px

= 1.5.4
💻
Raritan

Px

= 1.5.7
🔌
Raritan

Dpxr20a 16

All versions

References & Advisories

🔗 http://seclists.org/fulldisclosure/2014/Jul/14
🔗 http://www.kb.cert.org/vuls/id/712660
🔗 http://seclists.org/fulldisclosure/2014/Jul/14
🔗 http://www.kb.cert.org/vuls/id/712660

相關漏洞威脅

CVE-2014-052910.0

Buffer overflow in Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Windows and OS X allows attackers to ex...

CVE-2014-718610.0

The redirection implementation in parse.y in GNU Bash through 4.3 bash43-026 allows remote attackers to cause a denial of service ...

CVE-2014-052410.0

Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Windows and OS X allow attackers to execute arbitrary code...

CVE-2014-718710.0

Off-by-one error in the read_token_word function in parse.y in GNU Bash through 4.3 bash43-026 allows remote attackers to cause a ...