Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-4838

Overview

Vulnerability Score 1.9 1.9
CVE Id CVE-2012-4838
Last Modified 26 Dec 2012 12:00:00
Published 08 Dec 2012 10:55:01
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity MEDIUM
Authentication NONE

CVE-2012-4838

Summary

IBM Flex System Chassis Management Module (CMM) and Integrated Management Module 2 (IMM2) allow local users to obtain sensitive information about (1) local accounts, (2) SSH private keys, (3) SSL/TLS private keys, (4) SNMPv3 communities, and (5) LDAP credentials by leveraging unspecified side effects of service or maintenance activity.

Vulnerable Systems

Application

  • Ibm Flex System Chassis Management Module

  • Ibm Flex System Integrated Management Module


References

CONFIRM - https://www.ibm.com/connections/blogs/PSIRT/entry/flex_system_chassis_management_module_cmm_and_integrated_management_module_2_imm2_potential_security_vulnerability_with_authentication_data_cve_2012_4838_ibm_flex_system8

CONFIRM - https://www-947.ibm.com/support/entry/myportal/docdisplay?lndocid=MIGR-5092001

XF - ibm-flex-snmp-info-disc(79020)


Last Updated: 27 May 2016 11:01:29