4.3

CVE-2013-4037

EPSS 0.22%
Published 09.08.2013 23:55:02
Last modified 11.04.2025 00:51:21
Source psirt@us.ibm.com
Teams watchlist Login
Open Login

The RAKP protocol support in the Intelligent Platform Management Interface (IPMI) implementation in Integrated Management Module (IMM) and Integrated Management Module II (IMM2) on IBM BladeCenter, Flex System, System x iDataPlex, and System x3### servers sends a password hash to the client, which makes it easier for remote attackers to obtain access via a brute-force attack.

Affected products Warnungen 0 Metrics 2 CWE 0 References 5

Data is provided by the National Vulnerability Database (NVD)

Ibm ≫ Bladecenter Versionhs22

Ibm ≫ Bladecenter Versionhs22v

Ibm ≫ Bladecenter Versionhs23

Ibm ≫ Bladecenter Versionhs23e

Ibm ≫ Bladecenter Versionhx5

Ibm ≫ Flex System X220 Compute Node Version-

Ibm ≫ Flex System X240 Compute Node Version-

Ibm ≫ Flex System X440 Compute Node Version-

Ibm ≫ System X Idataplex Dx360 M2 Server Version-

Ibm ≫ System X Idataplex Dx360 M3 Server Version-

Ibm ≫ System X Idataplex Dx360 M4 Server Version-

Ibm ≫ System X3100 M4 Version-

Ibm ≫ System X3200 M3 Version-

Ibm ≫ System X3250 M3 Version-

Ibm ≫ System X3250 M4 Version-

Ibm ≫ System X3400 M2 Version-

Ibm ≫ System X3400 M3 Version-

Ibm ≫ System X3500 M2 Version-

Ibm ≫ System X3500 M3 Version-

Ibm ≫ System X3500 M4 Version-

Ibm ≫ System X3530 M4 Version-

Ibm ≫ System X3550 M2 Version-

Ibm ≫ System X3550 M3 Version-

Ibm ≫ System X3550 M4 Version-

Ibm ≫ System X3620 M3 Version-

Ibm ≫ System X3630 M3 Version-

Ibm ≫ System X3630 M4 Version-

Ibm ≫ System X3650 M2 Version-

Ibm ≫ System X3650 M3 Version-

Ibm ≫ System X3650 M4 Version-

Ibm ≫ System X3690 X5 Version-

Ibm ≫ System X3750 M4 Version-

Ibm ≫ System X3850 X5 Version-

Ibm ≫ System X3950 X5 Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.22%	0.414

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	4.3	8.6	2.9	AV:N/AC:M/Au:N/C:N/I:P/A:N

http://www.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5093463

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/86173

https://nvd.nist.gov/vuln/detail/CVE-2013-4037

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2013-4037

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2013-4037

EUVD