Overview
Raritan PX power distribution software version 01.05.08 and previous running on a model DPXR20A-16 device allows remote attackers to bypass authentication and execute arbitrary IPMI commands by using cipher suite 0 (aka cipher zero) and an arbitrary password.
Description
CWE-287: Improper Authentication - CVE-2014-2955 Raritan PX power distribution software version 01.05.08 and previous running on a model DPXR20A-16 device allows remote attackers to bypass authentication and execute arbitrary IPMI commands by using cipher suite 0 (aka cipher zero) and an arbitrary password. Other product models and software versions may also be affected. |
Impact
A remote unauthenticated attacker may be able to login and administer the device with full permissions of the compromised account. |
Solution
Apply an Update |
Restrict Access |
Vendor Information
CVSS Metrics
| Group | Score | Vector |
|---|---|---|
| Base | 10 | AV:N/AC:L/Au:N/C:C/I:C/A:C |
| Temporal | 9 | E:H/RL:TF/RC:C |
| Environmental | 7.0 | CDP:LM/TD:M/CR:H/IR:H/AR:H |
References
Acknowledgements
Thanks to Joerg Kost for reporting this vulnerability.
This document was written by Chris King.
Other Information
| CVE IDs: | CVE-2014-2955 |
| Date Public: | 2014-07-10 |
| Date First Published: | 2014-07-10 |
| Date Last Updated: | 2014-07-10 19:00 UTC |
| Document Revision: | 21 |