CVE-2014-4750

Currently unrated

Key Information:

Vendor: IBM
Status: Powervc
Vendor: CVE Published:; 20 August 2014

Summary

IBM PowerVC Express Edition 1.2.0 before FixPack3 establishes an FTP session for transferring files to a managed IVM, which allows remote attackers to discover credentials by sniffing the network.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/94352

vdb-entryx_refsource_XF

http://www-01.ibm.com/support/docview.wss?uid=nas8N1020223

x_refsource_CONFIRM

http://www.securityfocus.com/bid/69299

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Aug 20, 2014
Vulnerability Reserved
Jul 9, 2014