5

CVE-2010-2656

Exploit

EPSS 17.22%
Published 08.07.2010 12:54:47
Last modified 11.04.2025 00:51:21
Source cve@mitre.org
Teams watchlist Login
Open Login

The IBM BladeCenter with Advanced Management Module (AMM) firmware build ID BPET48L, and possibly other versions before 4.7 and 5.0, stores sensitive information under the web root with insufficient access control, which allows remote attackers to download (1) logs or (2) core files via direct requests, as demonstrated by a request for private/sdc.tgz.

Affected products Warnungen 0 Metrics 2 CWE 0 References 7

Data is provided by the National Vulnerability Database (NVD)

Ibm ≫ Advanced Management Module Updatel Version <= 2.48

Ibm ≫ Bladecenter

Ibm ≫ Advanced Management Module Version1.00

Ibm ≫ Bladecenter

Ibm ≫ Advanced Management Module Version1.01

Ibm ≫ Bladecenter

Ibm ≫ Advanced Management Module Version1.20

Ibm ≫ Bladecenter

Ibm ≫ Advanced Management Module Version1.20 Updatef

Ibm ≫ Bladecenter

Ibm ≫ Advanced Management Module Version1.25

Ibm ≫ Bladecenter

Ibm ≫ Advanced Management Module Version1.25 Updatee

Ibm ≫ Bladecenter

Ibm ≫ Advanced Management Module Version1.25 Updatei

Ibm ≫ Bladecenter

Ibm ≫ Advanced Management Module Version1.26 Updateb

Ibm ≫ Bladecenter

Ibm ≫ Advanced Management Module Version1.26 Updatee

Ibm ≫ Bladecenter

Ibm ≫ Advanced Management Module Version1.26 Updateh

Ibm ≫ Bladecenter

Ibm ≫ Advanced Management Module Version1.26 Updatei

Ibm ≫ Bladecenter

Ibm ≫ Advanced Management Module Version1.26 Updatek

Ibm ≫ Bladecenter

Ibm ≫ Advanced Management Module Version1.28 Updateg

Ibm ≫ Bladecenter

Ibm ≫ Advanced Management Module Version1.32 Updated

Ibm ≫ Bladecenter

Ibm ≫ Advanced Management Module Version1.34 Updateb

Ibm ≫ Bladecenter

Ibm ≫ Advanced Management Module Version1.34 Updatee

Ibm ≫ Bladecenter

Ibm ≫ Advanced Management Module Version1.36 Updated

Ibm ≫ Bladecenter

Ibm ≫ Advanced Management Module Version1.36 Updateg

Ibm ≫ Bladecenter

Ibm ≫ Advanced Management Module Version1.36 Updateh

Ibm ≫ Bladecenter

Ibm ≫ Advanced Management Module Version1.36 Updatek

Ibm ≫ Bladecenter

Ibm ≫ Advanced Management Module Version1.42 Updated

Ibm ≫ Bladecenter

Ibm ≫ Advanced Management Module Version1.42 Updatef

Ibm ≫ Bladecenter

Ibm ≫ Advanced Management Module Version1.42 Updatei

Ibm ≫ Bladecenter

Ibm ≫ Advanced Management Module Version1.42 Updaten

Ibm ≫ Bladecenter

Ibm ≫ Advanced Management Module Version1.42 Updateo

Ibm ≫ Bladecenter

Ibm ≫ Advanced Management Module Version1.42 Updatet

Ibm ≫ Bladecenter

Ibm ≫ Advanced Management Module Version2.46 Updatec

Ibm ≫ Bladecenter

Ibm ≫ Advanced Management Module Version2.46 Updatej

Ibm ≫ Bladecenter

Ibm ≫ Advanced Management Module Version2.48 Updatec

Ibm ≫ Bladecenter

Ibm ≫ Advanced Management Module Version2.48 Updated

Ibm ≫ Bladecenter

Ibm ≫ Advanced Management Module Version2.48 Updateg

Ibm ≫ Bladecenter

Ibm ≫ Advanced Management Module Version2.48 Updaten

Ibm ≫ Bladecenter

Ibm ≫ Advanced Management Module Version2.50 Updatec

Ibm ≫ Bladecenter

Ibm ≫ Advanced Management Module Version2.50 Updateg

Ibm ≫ Bladecenter

Ibm ≫ Advanced Management Module Version2.50 Updatek

Ibm ≫ Bladecenter

Ibm ≫ Advanced Management Module Version2.50 Updatep

Ibm ≫ Bladecenter

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	17.22%	0.944

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:P/I:N/A:N

http://dsecrg.com/pages/vul/show.php?id=154

Exploit

http://www.exploit-db.com/exploits/14237/

Exploit

http://www.securityfocus.com/bid/41383

Exploit

http://osvdb.org/66123

https://nvd.nist.gov/vuln/detail/CVE-2010-2656

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2010-2656

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2010-2656

EUVD