CVE-2012-2187
First published: Tue Sep 25 2012(Updated: )
IBM Remote Supervisor Adapter II firmware for System x3650, x3850 M2, and x3950 M2 1.13 and earlier generates weak RSA keys, which makes it easier for attackers to defeat cryptographic protection mechanisms via unspecified vectors.
Credit: psirt@us.ibm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| IBM Remote Supervisor Adapter II firmware | <=1.13 | |
| IBM Remote Supervisor Adapter II firmware | =1.0 | |
| IBM Remote Supervisor Adapter II firmware | =1.1 | |
| IBM Remote Supervisor Adapter II firmware | =1.2 | |
| IBM Remote Supervisor Adapter II firmware | =1.3 | |
| IBM Remote Supervisor Adapter II firmware | =1.4 | |
| IBM Remote Supervisor Adapter II firmware | =1.5 | |
| IBM Remote Supervisor Adapter II firmware | =1.6 | |
| IBM Remote Supervisor Adapter II firmware | =1.7 | |
| IBM Remote Supervisor Adapter II firmware | =1.8 | |
| IBM Remote Supervisor Adapter II firmware | =1.9 | |
| IBM Remote Supervisor Adapter II firmware | =1.10 | |
| IBM Remote Supervisor Adapter II firmware | =1.11 | |
| IBM Remote Supervisor Adapter II firmware | =1.12 | |
| IBM System x3650 | ||
| Ibm X3850 | =m2 | |
| Ibm X3950 | =m2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.ibm.com/connections/blogs/PSIRT/entry/security_bulletin_weak_key_vulnerability_in_remote_supervisor_adapter_ii_firmware_cve_2012_2187_ibm_system_x3650_system_x3850_m2_system_x3950_m25
- http://www.securityfocus.com/bid/55609
- https://www-947.ibm.com/support/entry/myportal/docdisplay?lndocid=MIGR-5091525
Frequently Asked Questions
What is the severity of CVE-2012-2187?
CVE-2012-2187 is considered a high severity vulnerability due to its potential to enable attackers to defeat cryptographic protections.
How do I fix CVE-2012-2187?
To fix CVE-2012-2187, users should upgrade the IBM Remote Supervisor Adapter II firmware to a version later than 1.13.
What systems are affected by CVE-2012-2187?
CVE-2012-2187 affects IBM System x3650, x3850 M2, and x3950 M2 with firmware versions 1.13 and earlier.
What kind of vulnerability is CVE-2012-2187?
CVE-2012-2187 is a cryptographic vulnerability caused by the generation of weak RSA keys in the affected firmware.
Who is affected by CVE-2012-2187?
Organizations using IBM Remote Supervisor Adapter II firmware versions 1.13 and earlier are at risk of CVE-2012-2187.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/weakness
- agent/references
- agent/severity
- agent/last-modified-date
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/softwarecombine
- vendor/ibm
- canonical/ibm remote supervisor adapter ii firmware
- version/ibm remote supervisor adapter ii firmware/1.13
- version/ibm remote supervisor adapter ii firmware/1.0
- version/ibm remote supervisor adapter ii firmware/1.1
- version/ibm remote supervisor adapter ii firmware/1.2
- version/ibm remote supervisor adapter ii firmware/1.3
- version/ibm remote supervisor adapter ii firmware/1.4
- version/ibm remote supervisor adapter ii firmware/1.5
- version/ibm remote supervisor adapter ii firmware/1.6
- version/ibm remote supervisor adapter ii firmware/1.7
- version/ibm remote supervisor adapter ii firmware/1.8
- version/ibm remote supervisor adapter ii firmware/1.9
- version/ibm remote supervisor adapter ii firmware/1.10
- version/ibm remote supervisor adapter ii firmware/1.11
- version/ibm remote supervisor adapter ii firmware/1.12
- canonical/ibm system x3650
- canonical/ibm x3850
- version/ibm x3850/m2
- canonical/ibm x3950
- version/ibm x3950/m2