Vulnerabilities > CVE-2021-29847 - Unspecified vulnerability in IBM products

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

network

ibm

NVD

Published: 2021-12-15

Updated: 2021-12-21

Summary

BMC firmware (IBM Power System S821LC Server (8001-12C) OP825.50) configuration changed to allow an authenticated user to open an insecure communication channel which could allow an attacker to obtain sensitive information using man in the middle techniques. IBM X-Force ID: 205267.

Vulnerable Configurations

Part	Description	Count
OS	Ibm IBM Power Hardware Management Console (7063 Cr1) Firmware * IBM Power System Cs822Lc (8005 22N) Firmware * IBM Power System Cs821Lc (8005 12N) Firmware * IBM Power System S822Lc (8001 22C) Firmware * IBM Power System S821Lc (8001 12C) Firmware *	5
Hardware	Ibm IBM Power Hardware Management Console (7063 Cr1) - IBM Power System Cs822Lc (8005 22N) - IBM Power System Cs821Lc (8005 12N) - IBM Power System S822Lc (8001 22C) - IBM Power System S821Lc (8001 12C) -	5

Summary

Vulnerable Configurations

References