Vulnerabilities (CVE)

Filtered by vendor Ibm Subscribe
Filtered by product Openbmc
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2024-31916 1 Ibm 1 Openbmc 2024-11-21 N/A 7.5 HIGH
IBM OpenBMC FW1050.00 through FW1050.10 BMCWeb HTTPS server component could disclose sensitive URI content to an unauthorized actor that bypasses authentication channels. IBM X-ForceID: 290026.
CVE-2024-35124 1 Ibm 1 Openbmc 2024-08-22 N/A 7.5 HIGH
A vulnerability in the combination of the OpenBMC's FW1050.00 through FW1050.10, FW1030.00 through FW1030.50, and FW1020.00 through FW1020.60 default password and session management allow an attacker to gain administrative access to the BMC. IBM X-Force ID: 290674.