Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.877470
Category:Fedora Local Security Checks
Title:Fedora: Security Advisory for ipmitool (FEDORA-2020-eb0cf4d268)
Summary:The remote host is missing an update for the 'ipmitool'; package(s) announced via the FEDORA-2020-eb0cf4d268 advisory.
Description:Summary:
The remote host is missing an update for the 'ipmitool'
package(s) announced via the FEDORA-2020-eb0cf4d268 advisory.

Vulnerability Insight:
This package contains a utility for interfacing with devices that support
the Intelligent Platform Management Interface specification. IPMI is
an open standard for machine health, inventory, and remote power control.

This utility can communicate with IPMI-enabled devices through either a
kernel driver such as OpenIPMI or over the RMCP LAN protocol defined in
the IPMI specification. IPMIv2 adds support for encrypted LAN
communications and remote Serial-over-LAN functionality.

It provides commands for reading the Sensor Data Repository (SDR) and
displaying sensor values, displaying the contents of the System Event
Log (SEL), printing Field Replaceable Unit (FRU) information, reading and
setting LAN configuration, and chassis power control.

Affected Software/OS:
'ipmitool' package(s) on Fedora 31.

Solution:
Please install the updated package(s).

CVSS Score:
6.5

CVSS Vector:
AV:N/AC:L/Au:S/C:P/I:P/A:P

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2020-5208
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RYYEKUAUTCWICM77HOEGZDVVEUJLP4BP/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/K2BPW66KDP4H36AGZXLED57A3O2Y6EQW/
https://security.gentoo.org/glsa/202101-03
https://github.com/ipmitool/ipmitool/commit/e824c23316ae50beb7f7488f2055ac65e8b341f2
https://lists.debian.org/debian-lts-announce/2020/02/msg00006.html
https://lists.debian.org/debian-lts-announce/2021/06/msg00029.html
SuSE Security Announcement: openSUSE-SU-2020:0247 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2020-02/msg00031.html
CopyrightCopyright (C) 2020 Greenbone Networks GmbH

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2024 E-Soft Inc. All rights reserved.