CVE-2013-6718
First published: Sun Dec 01 2013(Updated: )
The Advanced Management Module (AMM) with firmware 3.64B, 3.64C, and 3.64G for IBM BladeCenter systems allows remote attackers to discover account names and passwords via use of an unspecified interface.
Credit: psirt@us.ibm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| IBM Advanced Management Module | =3.64-bbet64b | |
| IBM Advanced Management Module | =3.64-bbet64c | |
| IBM Advanced Management Module | =3.64-bbet64g | |
| IBM Advanced Management Module | =3.64-bpeo64b | |
| IBM Advanced Management Module | =3.64-bpeo64c | |
| IBM Advanced Management Module | =3.64-bpeo64g | |
| IBM Advanced Management Module | =3.64-bpet64b | |
| IBM Advanced Management Module | =3.64-bpet64c | |
| IBM Advanced Management Module | =3.64-bpet64g |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://osvdb.org/100397
- http://secunia.com/advisories/55921
- http://www.ibm.com/connections/blogs/PSIRT/entry/security_bulletin_ibm_bladecenter_advanced_management_module_account_information_exposure_cve_2013_6718
- http://www.securityfocus.com/bid/64032
- https://exchange.xforce.ibmcloud.com/vulnerabilities/89174
Frequently Asked Questions
What is the severity of CVE-2013-6718?
CVE-2013-6718 is considered to have a high severity due to the potential exposure of sensitive account information.
How do I fix CVE-2013-6718?
To fix CVE-2013-6718, you need to update the Advanced Management Module firmware to a patched version that addresses the vulnerability.
What versions of IBM Advanced Management Module are affected by CVE-2013-6718?
CVE-2013-6718 affects versions 3.64B, 3.64C, and 3.64G of the IBM Advanced Management Module firmware.
What are the potential consequences of CVE-2013-6718?
The potential consequences of CVE-2013-6718 include unauthorized access to account names and passwords, which could lead to further exploitation.
Is there a workaround for CVE-2013-6718 if an update cannot be performed immediately?
While updating firmware is the recommended solution for CVE-2013-6718, limiting network access to the management interface may act as a temporary workaround.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/last-modified-date
- agent/severity
- agent/references
- agent/weakness
- agent/description
- agent/event
- agent/first-publish-date
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/ibm
- canonical/ibm advanced management module
- version/ibm advanced management module/3.64-bbet64b
- version/ibm advanced management module/3.64-bbet64c
- version/ibm advanced management module/3.64-bbet64g
- version/ibm advanced management module/3.64-bpeo64b
- version/ibm advanced management module/3.64-bpeo64c
- version/ibm advanced management module/3.64-bpeo64g
- version/ibm advanced management module/3.64-bpet64b
- version/ibm advanced management module/3.64-bpet64c
- version/ibm advanced management module/3.64-bpet64g