Vulnerability CVE-2014-4752


Published: 2014-09-23   Modified: 2014-09-24

Description:
IBM System Networking G8052, G8124, G8124-E, G8124-ER, G8264, G8316, and G8264-T switches before 7.9.10.0; EN4093, EN4093R, CN4093, SI4093, EN2092, and G8264CS switches before 7.8.6.0; Flex System Interconnect Fabric before 7.8.6.0; 1G L2-7 SLB switch for Bladecenter before 21.0.21.0; 10G VFSM for Bladecenter before 7.8.14.0; 1:10G switch for Bladecenter before 7.4.8.0; 1G switch for Bladecenter before 5.3.5.0; Server Connectivity Module before 1.1.3.4; System Networking RackSwitch G8332 before 7.7.17.0; and System Networking RackSwitch G8000 before 7.1.7.0 have hardcoded credentials, which makes it easier for remote attackers to obtain access via unspecified vectors.

CVSS2 => (AV:N/AC:L/Au:N/C:C/I:C/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
10/10
10/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
Complete
Complete
Complete
Affected software
IBM -> System networking rackswitch g8264cs 
IBM -> System networking rackswitch g8124 firmware 
IBM -> Bladecenter 1/10g 
IBM -> System networking rackswitch g8264t 
IBM -> System networking rackswitch g8124e firmware 
IBM -> Bladecenter 10g vfsm 
IBM -> System networking rackswitch g8316 
IBM -> System networking rackswitch g8124er firmware 
IBM -> Bladecenter 1g 
IBM -> System networking rackswitch g8332 
IBM -> System networking rackswitch g8264 firmware 
IBM -> Bladecenter 1g l2-7 slb 
IBM -> System networking rackswitch si4093 
IBM -> System networking rackswitch g8264cs firmware 
IBM -> Flex system interconnect fabric 
IBM -> Bladecenter 1/10g firmware 
IBM -> System networking rackswitch g8264t firmware 
IBM -> Server connectivity module 
IBM -> Bladecenter 10g vfsm firmware 
IBM -> System networking rackswitch g8316 firmware 
IBM -> System networking rackswitch cn4093 
IBM -> Bladecenter 1g firmware 
IBM -> System networking rackswitch g8332 firmware 
IBM -> System networking rackswitch en2092 
IBM -> Bladecenter 1g l2-7 slb firmware 
IBM -> System networking rackswitch si4093 firmware 
IBM -> System networking rackswitch en4093 
IBM -> Flex system interconnect fabric firmware 
IBM -> System networking rackswitch en4093r 
IBM -> Server connectivity module firmware 
IBM -> System networking rackswitch g8052 
IBM -> System networking rackswitch cn4093 firmware 
IBM -> System networking rackswitch g8124 
IBM -> System networking rackswitch en2092 firmware 
IBM -> System networking rackswitch g8124e 
IBM -> System networking rackswitch en4093 firmware 
IBM -> System networking rackswitch g8124er 
IBM -> System networking rackswitch en4093r firmware 
IBM -> System networking rackswitch g8264 
IBM -> System networking rackswitch g8052 firmware 

 References:
http://www.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5096232

Copyright 2024, cxsecurity.com

 

Back to Top