VAR-200412-0782
Vulnerability from variot - Updated: 2025-04-03 22:11The firmware for Intelligent Platform Management Interface (IPMI) 1.5-based Intel Server Boards and Platforms is shipped with an Authentication Type Enables parameter set to an invalid None parameter, which allows remote attackers to obtain sensitive information when LAN management functionality is enabled. It has been reported that the LAN management server setup utilities are prone to a remote configuration vulnerability. This issue is due to a design error that leaves the system insecure after remote management occurs. This issue may allow an attacker to gain unauthorized access to certain utilities on the affected system
Show details on source website{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-200412-0782",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "server platform sr870bh2",
"scope": "eq",
"trust": 1.0,
"vendor": "intel",
"version": "*"
},
{
"model": "server configuration wizard",
"scope": "eq",
"trust": 1.0,
"vendor": "intel",
"version": "*"
},
{
"model": "server board scb2",
"scope": "eq",
"trust": 1.0,
"vendor": "intel",
"version": "*"
},
{
"model": "server board se7500wv2",
"scope": "eq",
"trust": 1.0,
"vendor": "intel",
"version": "*"
},
{
"model": "carrier grade server cc3300",
"scope": "eq",
"trust": 1.0,
"vendor": "hp",
"version": "a6901a"
},
{
"model": "server platform srsh4",
"scope": "eq",
"trust": 1.0,
"vendor": "intel",
"version": "*"
},
{
"model": "carrier grade server cc2300",
"scope": "eq",
"trust": 1.0,
"vendor": "hp",
"version": "a6898a"
},
{
"model": "carrier grade server cc3310",
"scope": "eq",
"trust": 1.0,
"vendor": "hp",
"version": "a9863a"
},
{
"model": "entry server board se7210tp1-e",
"scope": "eq",
"trust": 1.0,
"vendor": "intel",
"version": "*"
},
{
"model": "server board sds2",
"scope": "eq",
"trust": 1.0,
"vendor": "intel",
"version": "*"
},
{
"model": "server board se7501hg2",
"scope": "eq",
"trust": 1.0,
"vendor": "intel",
"version": "*"
},
{
"model": "server platform sr870bn4",
"scope": "eq",
"trust": 1.0,
"vendor": "intel",
"version": "*"
},
{
"model": "entry server platform sr1325tp1-e",
"scope": "eq",
"trust": 1.0,
"vendor": "intel",
"version": "*"
},
{
"model": "system setup utility",
"scope": "eq",
"trust": 1.0,
"vendor": "intel",
"version": "*"
},
{
"model": "cli auto-configuration utility",
"scope": "eq",
"trust": 1.0,
"vendor": "intel",
"version": "*"
},
{
"model": "carrier grade server tsrmt2",
"scope": "eq",
"trust": 1.0,
"vendor": "intel",
"version": "*"
},
{
"model": "carrier grade server cc3300",
"scope": "eq",
"trust": 1.0,
"vendor": "hp",
"version": "a6900a"
},
{
"model": "server control",
"scope": "eq",
"trust": 1.0,
"vendor": "intel",
"version": "*"
},
{
"model": "server platform spsh4",
"scope": "eq",
"trust": 1.0,
"vendor": "intel",
"version": "*"
},
{
"model": "carrier grade server cc3310",
"scope": "eq",
"trust": 1.0,
"vendor": "hp",
"version": "a9862a"
},
{
"model": "carrier grade server cc2300",
"scope": "eq",
"trust": 1.0,
"vendor": "hp",
"version": "a6899a"
},
{
"model": "server board shg2",
"scope": "eq",
"trust": 1.0,
"vendor": "intel",
"version": "*"
},
{
"model": "carrier grade server tigpr2u",
"scope": "eq",
"trust": 1.0,
"vendor": "intel",
"version": "*"
},
{
"model": "client system setup utility",
"scope": "eq",
"trust": 1.0,
"vendor": "intel",
"version": "*"
},
{
"model": "carrier grade server tsrlt2",
"scope": "eq",
"trust": 1.0,
"vendor": "intel",
"version": "*"
},
{
"model": "server platform srsh4",
"scope": null,
"trust": 0.9,
"vendor": "intel",
"version": null
},
{
"model": "server platform sr870bn4",
"scope": null,
"trust": 0.9,
"vendor": "intel",
"version": null
},
{
"model": "server platform sr870bh2",
"scope": null,
"trust": 0.9,
"vendor": "intel",
"version": null
},
{
"model": "server platform spsh4",
"scope": null,
"trust": 0.9,
"vendor": "intel",
"version": null
},
{
"model": "server board shg2",
"scope": null,
"trust": 0.9,
"vendor": "intel",
"version": null
},
{
"model": "server board se7501hg2",
"scope": null,
"trust": 0.9,
"vendor": "intel",
"version": null
},
{
"model": "server board se7500wv2",
"scope": null,
"trust": 0.9,
"vendor": "intel",
"version": null
},
{
"model": "server board sds2",
"scope": null,
"trust": 0.9,
"vendor": "intel",
"version": null
},
{
"model": "server board scb2",
"scope": null,
"trust": 0.9,
"vendor": "intel",
"version": null
},
{
"model": "entry server platform sr1325tp1-e",
"scope": null,
"trust": 0.9,
"vendor": "intel",
"version": null
},
{
"model": "system setup utility",
"scope": null,
"trust": 0.3,
"vendor": "intel",
"version": null
},
{
"model": "server control",
"scope": null,
"trust": 0.3,
"vendor": "intel",
"version": null
},
{
"model": "server configuration wizard",
"scope": null,
"trust": 0.3,
"vendor": "intel",
"version": null
},
{
"model": "entry server board se7210tp1-e",
"scope": null,
"trust": 0.3,
"vendor": "intel",
"version": null
},
{
"model": "client system setup utility",
"scope": null,
"trust": 0.3,
"vendor": "intel",
"version": null
},
{
"model": "cli auto-configuration utility",
"scope": null,
"trust": 0.3,
"vendor": "intel",
"version": null
},
{
"model": "carrier grade server tsrmt2",
"scope": null,
"trust": 0.3,
"vendor": "intel",
"version": null
},
{
"model": "carrier grade server tsrlt2",
"scope": null,
"trust": 0.3,
"vendor": "intel",
"version": null
},
{
"model": "carrier grade server tigpr2u",
"scope": null,
"trust": 0.3,
"vendor": "intel",
"version": null
},
{
"model": "carrier grade server cc3310 a9863a",
"scope": null,
"trust": 0.3,
"vendor": "hp",
"version": null
},
{
"model": "carrier grade server cc3310 a9862a",
"scope": null,
"trust": 0.3,
"vendor": "hp",
"version": null
},
{
"model": "carrier grade server cc3300 a6901a",
"scope": null,
"trust": 0.3,
"vendor": "hp",
"version": null
},
{
"model": "carrier grade server cc3300 a6900a",
"scope": null,
"trust": 0.3,
"vendor": "hp",
"version": null
},
{
"model": "carrier grade server cc2300 a6899a",
"scope": null,
"trust": 0.3,
"vendor": "hp",
"version": null
},
{
"model": "carrier grade server cc2300 a6898a",
"scope": null,
"trust": 0.3,
"vendor": "hp",
"version": null
}
],
"sources": [
{
"db": "BID",
"id": "10068"
},
{
"db": "CNNVD",
"id": "CNNVD-200412-549"
},
{
"db": "NVD",
"id": "CVE-2004-2600"
}
]
},
"credits": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/credits#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "This issue was disclosed in the referenced Intel action alert.",
"sources": [
{
"db": "BID",
"id": "10068"
},
{
"db": "CNNVD",
"id": "CNNVD-200412-549"
}
],
"trust": 0.9
},
"cve": "CVE-2004-2600",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "nvd@nist.gov",
"availabilityImpact": "NONE",
"baseScore": 5.0,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 10.0,
"id": "CVE-2004-2600",
"impactScore": 2.9,
"integrityImpact": "NONE",
"severity": "MEDIUM",
"trust": 1.0,
"vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "VULHUB",
"availabilityImpact": "NONE",
"baseScore": 5.0,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 10.0,
"id": "VHN-11028",
"impactScore": 2.9,
"integrityImpact": "NONE",
"severity": "MEDIUM",
"trust": 0.1,
"vectorString": "AV:N/AC:L/AU:N/C:P/I:N/A:N",
"version": "2.0"
}
],
"cvssV3": [],
"severity": [
{
"author": "nvd@nist.gov",
"id": "CVE-2004-2600",
"trust": 1.0,
"value": "MEDIUM"
},
{
"author": "CNNVD",
"id": "CNNVD-200412-549",
"trust": 0.6,
"value": "MEDIUM"
},
{
"author": "VULHUB",
"id": "VHN-11028",
"trust": 0.1,
"value": "MEDIUM"
}
]
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-11028"
},
{
"db": "CNNVD",
"id": "CNNVD-200412-549"
},
{
"db": "NVD",
"id": "CVE-2004-2600"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "The firmware for Intelligent Platform Management Interface (IPMI) 1.5-based Intel Server Boards and Platforms is shipped with an Authentication Type Enables parameter set to an invalid None parameter, which allows remote attackers to obtain sensitive information when LAN management functionality is enabled. It has been reported that the LAN management server setup utilities are prone to a remote configuration vulnerability. This issue is due to a design error that leaves the system insecure after remote management occurs. \nThis issue may allow an attacker to gain unauthorized access to certain utilities on the affected system",
"sources": [
{
"db": "NVD",
"id": "CVE-2004-2600"
},
{
"db": "BID",
"id": "10068"
},
{
"db": "VULHUB",
"id": "VHN-11028"
}
],
"trust": 1.26
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "BID",
"id": "10068",
"trust": 2.0
},
{
"db": "OSVDB",
"id": "4978",
"trust": 1.7
},
{
"db": "NVD",
"id": "CVE-2004-2600",
"trust": 1.7
},
{
"db": "SECUNIA",
"id": "11315",
"trust": 1.7
},
{
"db": "CNNVD",
"id": "CNNVD-200412-549",
"trust": 0.7
},
{
"db": "XF",
"id": "15775",
"trust": 0.6
},
{
"db": "VULHUB",
"id": "VHN-11028",
"trust": 0.1
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-11028"
},
{
"db": "BID",
"id": "10068"
},
{
"db": "CNNVD",
"id": "CNNVD-200412-549"
},
{
"db": "NVD",
"id": "CVE-2004-2600"
}
]
},
"id": "VAR-200412-0782",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "VULHUB",
"id": "VHN-11028"
}
],
"trust": 0.01
},
"last_update_date": "2025-04-03T22:11:05.979000Z",
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "NVD-CWE-Other",
"trust": 1.0
}
],
"sources": [
{
"db": "NVD",
"id": "CVE-2004-2600"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 2.0,
"url": "http://support.intel.com/support/motherboards/server/sb/cs-010422.htm"
},
{
"trust": 1.7,
"url": "http://www.securityfocus.com/bid/10068"
},
{
"trust": 1.7,
"url": "ftp://download.intel.com/support/motherboards/server/sb/aa6791invalidlanconfiguration040504.pdf"
},
{
"trust": 1.7,
"url": "http://www.osvdb.org/4978"
},
{
"trust": 1.7,
"url": "http://secunia.com/advisories/11315"
},
{
"trust": 1.1,
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/15775"
},
{
"trust": 0.6,
"url": "http://xforce.iss.net/xforce/xfdb/15775"
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-11028"
},
{
"db": "BID",
"id": "10068"
},
{
"db": "CNNVD",
"id": "CNNVD-200412-549"
},
{
"db": "NVD",
"id": "CVE-2004-2600"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "VULHUB",
"id": "VHN-11028"
},
{
"db": "BID",
"id": "10068"
},
{
"db": "CNNVD",
"id": "CNNVD-200412-549"
},
{
"db": "NVD",
"id": "CVE-2004-2600"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2004-12-31T00:00:00",
"db": "VULHUB",
"id": "VHN-11028"
},
{
"date": "2004-04-07T00:00:00",
"db": "BID",
"id": "10068"
},
{
"date": "2004-12-31T00:00:00",
"db": "CNNVD",
"id": "CNNVD-200412-549"
},
{
"date": "2004-12-31T05:00:00",
"db": "NVD",
"id": "CVE-2004-2600"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2017-07-11T00:00:00",
"db": "VULHUB",
"id": "VHN-11028"
},
{
"date": "2004-04-07T00:00:00",
"db": "BID",
"id": "10068"
},
{
"date": "2006-01-23T00:00:00",
"db": "CNNVD",
"id": "CNNVD-200412-549"
},
{
"date": "2025-04-03T01:03:51.193000",
"db": "NVD",
"id": "CVE-2004-2600"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "remote",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-200412-549"
}
],
"trust": 0.6
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Intel LAN Management Server Configuration Vulnerability",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-200412-549"
}
],
"trust": 0.6
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Design Error",
"sources": [
{
"db": "BID",
"id": "10068"
},
{
"db": "CNNVD",
"id": "CNNVD-200412-549"
}
],
"trust": 0.9
}
}
Loading…
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…