Security Advisory

CVE-2013-4786

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2013-07-08 22:00:00

Last updated 2024-08-06 16:52:27

Assigner mitre

State PUBLISHED

Description

The IPMI 2.0 specification supports RMCP+ Authenticated Key-Exchange Protocol (RAKP) authentication, which allows remote attackers to obtain password hashes and conduct offline password guessing attacks by obtaining the HMAC from a RAKP message 2 response from a BMC.

← Browse all CVEs View on cve.org ↗