CVE-2026-0980

Name of the Vulnerable Software and Affected Versions rubyipmi (affected versions not specified)

Description A flaw exists in rubyipmi, a gem used in the Baseboard Management Controller (BMC) component of Red Hat Satellite. An authenticated attacker possessing host creation or update permissions can exploit this issue by constructing a malicious username for the BMC interface. Successful exploitation can result in remote code execution (RCE) on the system. The vulnerability allows an attacker to execute arbitrary code on the target system through the BMC interface. The vulnerable component is the BMC interface, and the attack vector involves crafting a malicious username.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.