Vulnerabilities > IBM > Power System Ac922 8335 GTG Firmware > Medium
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2022-12-12 | CVE-2022-22488 | Allocation of Resources Without Limits or Throttling vulnerability in IBM products IBM OpenBMC OP910 and OP940 could allow a privileged user to cause a denial of service by uploading or deleting too many CA certificates in a short period of time. | 4.9 |
2022-08-22 | CVE-2021-29891 | Unrestricted Upload of File with Dangerous Type vulnerability in IBM products IBM OPENBMC OP910 and OP940 could allow a privileged user to upload an improper site identity certificate that may cause it to lose network services. | 4.9 |
2021-12-27 | CVE-2021-38961 | Cross-site Scripting vulnerability in IBM products IBM OPENBMC OP910 is vulnerable to cross-site scripting. | 6.1 |
2019-03-21 | CVE-2018-1992 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in IBM products The IBM Power 9 OP910, OP920, and FW910 boot firmware's bootloader is responsible for loading and validating the initial boot firmware image that drives the rest of the system's hardware initialization. | 6.4 |