CVE-2013-6306

Unspecified vulnerability on IBM Power 7 Systems 740 before 740.70 01Ax740_121, 760 before 760.40 Ax760_078, and 770 before 770.30 01Ax770_062 allows local users to gain Service Processor privileges via unknown vectors.

CVSS v2.0 4.6 MEDIUM

4.6^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:L/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 3.9 / Impact : 6.4

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://www-01.ibm.com/support/docview.wss?uid=isg3T1021104	Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/88555

Configurations

Configuration 1 (hide)

AND

OR	cpe:2.3:o:ibm:power_760_firmware:760.00_ax760_034_034:::::::*
	cpe:2.3:o:ibm:power_760_firmware:760.10_am760_044_034:::::::*
	cpe:2.3:o:ibm:power_760_firmware:760.10_ax760_043_034:::::::*
	cpe:2.3:o:ibm:power_760_firmware:760.10_ax760_043_043:::::::*
	cpe:2.3:o:ibm:power_760_firmware:760.11_ax760_051_034:::::::*
	cpe:2.3:o:ibm:power_760_firmware:760.20_ah760_062_043:::::::*
	cpe:2.3:o:ibm:power_760_firmware:760.20_am760_062_034:::::::*
	cpe:2.3:o:ibm:power_760_firmware:760.30_ah760_068_043:::::::*
	cpe:2.3:o:ibm:power_760_firmware:760.30_am760_068_034:::::::*
	cpe:2.3:o:ibm:power_760_firmware:760.31_ah760_069_043:::::::*
	cpe:2.3:o:ibm:power_760_firmware:760.31_am760_069_034:::::::*

OR	cpe:2.3:h:ibm:power_770:9117-mmd:::::::*
	cpe:2.3:h:ibm:power_780:9179-mhd:::::::*
	cpe:2.3:h:ibm:power_795:9119-fhb:::::::*
	cpe:2.3:h:ibm:power_ese:8412-ead:::::::*

Configuration 2 (hide)

AND

OR	cpe:2.3:o:ibm:power_740_firmware:740.00_01ax740_042_042:::::::*
	cpe:2.3:o:ibm:power_740_firmware:740.10_01ax740_043_042:::::::*
	cpe:2.3:o:ibm:power_740_firmware:740.15_01ax740_045_042:::::::*
	cpe:2.3:o:ibm:power_740_firmware:740.16_01ax740_046_042:::::::*
	cpe:2.3:o:ibm:power_740_firmware:740.20_01ax740_075_042:::::::*
	cpe:2.3:o:ibm:power_740_firmware:740.21_01ax740_077_042:::::::*
	cpe:2.3:o:ibm:power_740_firmware:740.40_01ax740_088_042:::::::*
	cpe:2.3:o:ibm:power_740_firmware:740.50_01ax740_095_042:::::::*
	cpe:2.3:o:ibm:power_740_firmware:740.51_01ax740_098_042:::::::*
	cpe:2.3:o:ibm:power_740_firmware:740.52_01ax740_100_042:::::::*
	cpe:2.3:o:ibm:power_740_firmware:740.60_01ax740_110_042:::::::*
	cpe:2.3:o:ibm:power_740_firmware:740.61_01ax740_112_042:::::::*

OR	cpe:2.3:h:ibm:power_710:8231-e1c:::::::*
	cpe:2.3:h:ibm:power_720:8202-e4c:::::::*
	cpe:2.3:h:ibm:power_730:8231-e2c:::::::*
	cpe:2.3:h:ibm:power_740:8205-e6c:::::::*
	cpe:2.3:h:ibm:power_770:9117-mmc:::::::*
	cpe:2.3:h:ibm:power_780:9179-mhc:::::::*

Configuration 3 (hide)

AND

OR	cpe:2.3:o:ibm:power_770_firmware:770.00_01al770_032_032:::::::*
	cpe:2.3:o:ibm:power_770_firmware:770.10_01ax770_038_032:::::::*
	cpe:2.3:o:ibm:power_770_firmware:770.20_01ax770_048_032:::::::*
	cpe:2.3:o:ibm:power_770_firmware:770.21_01ax770_052_032:::::::*
	cpe:2.3:o:ibm:power_770_firmware:770.22_01ax770_055_032:::::::*

OR	cpe:2.3:h:ibm:power_710:8231-e1d:::::::*
	cpe:2.3:h:ibm:power_710:8268-e1d:::::::*
	cpe:2.3:h:ibm:power_720:8202-e4d:::::::*
	cpe:2.3:h:ibm:power_730:8231-e2d:::::::*
	cpe:2.3:h:ibm:power_740:8205-e6d:::::::*
	cpe:2.3:h:ibm:power_750:8408-e8d:::::::*
	cpe:2.3:h:ibm:power_760:9109-rmd:::::::*
	cpe:2.3:h:ibm:power_770:9117-mmc:::::::*
	cpe:2.3:h:ibm:power_780:9179-mhc:::::::*
	cpe:2.3:h:ibm:powerlinux_7r1:8246-l1d:::::::*
	cpe:2.3:h:ibm:powerlinux_7r1:8246-l1t:::::::*
	cpe:2.3:h:ibm:powerlinux_7r2:8246-l2d:::::::*
	cpe:2.3:h:ibm:powerlinux_7r2:8246-l2t:::::::*

History

No history.

Information

Published : 2014-08-22 17:55

Updated : 2024-02-28 12:20

NVD link : CVE-2013-6306

Mitre link : CVE-2013-6306

CVE.ORG link : CVE-2013-6306

JSON object : View

Products Affected

ibm

power_760
power_770_firmware
power_750
power_720
power_770
power_740_firmware
power_730
power_795
power_780
power_ese
powerlinux_7r1
power_740
power_760_firmware
power_710
powerlinux_7r2

CWE

NVD-CWE-noinfo

4.6 /10