IBM OpenBMC denial of service
CVE-2022-22488

4.9MEDIUM

Key Information:

Vendor

IBM
Status
Openbmc
Vendor
CVE Published:
12 December 2022

What is CVE-2022-22488?

IBM OpenBMC OP910 and OP940 could allow a privileged user to cause a denial of service by uploading or deleting too many CA certificates in a short period of time. IBM X-Force ID: 2226337.

Affected Version(s)

OpenBMC OP910, OP940

References

https://www.ibm.com/support/pages/node/6840155
vendor-advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/226337
vdb-entry

CVSS V3.1

Score:
4.9
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
High
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.