CVE-2021-29847

Name of the Vulnerable Software and Affected Versions BMC firmware (IBM Power System S821LC Server (8001-12C)) version OP825.50

Description The BMC firmware configuration allows an authenticated user to open an insecure communication channel, potentially enabling an attacker to obtain sensitive information using man-in-the-middle techniques.

Recommendations For BMC firmware (IBM Power System S821LC Server (8001-12C)) version OP825.50, consider restricting access to the communication channel until a secure configuration can be applied. As a temporary workaround, limit the use of the insecure communication channel to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.