PT-2018-4126 · Ibm · Ibm Flex System X222+1

Published

2018-04-25

Updated

2018-06-04

CVE-2014-0881

CVSS v2.0

5.8

Medium

Vector

AV:N/AC:M/Au:N/C:P/I:N/A:P

Name of the Vulnerable Software and Affected Versions IBM Flex System x222 servers with firmware versions 1.00 through 3.56

Description The issue allows remote attackers to obtain sensitive key information or cause a denial of service by leveraging an incorrect configuration of the Trusted Platform Module (TPM) on the Integrated Management Module II (IMM2).

Recommendations For firmware versions 1.00 through 3.56, update the firmware to a version that corrects the incorrect configuration to prevent remote attackers from obtaining sensitive key information or causing a denial of service.

Fix

Improper Access Control

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-284

Related Identifiers

CVE-2014-0881

Affected Products

Ibm Flex System X222

Integrated Management Module Ii

PT-2018-4126 · Ibm · Ibm Flex System X222+1

CVE-2014-0881

Weakness Enumeration

Related Identifiers

Affected Products

References · 4