PT-2025-46684 · Fujitsu · Fujitsu Irmc S6
Published
2025-11-12
·
Updated
2025-11-14
·
CVE-2025-65002
CVSS v3.1
7.5
High
| Vector | AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Fujitsu iRMC S6 on M5 versions prior to 1.37S
Description
The software mishandles Redfish/WebUI access when a username with a length of exactly 16 characters is used. The issue affects access through the Redfish API and the WebUI. The vulnerable component is related to the handling of username length during authentication.
Recommendations
Update to version 1.37S or later.
Fix
Incorrect Authorization
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Fujitsu Irmc S6