Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm integrated management module firmware vulnerabilities and exploits
(subscribe to this query)
356
VMScore
CVE-2014-0882
Integrated Management Module II (IMM2) on IBM Flex System, NeXtScale, System x3xxx, and System x iDataPlex systems might allow remote authenticated users to obtain sensitive account information via vectors related to generated Service Advisor data (FFDC). IBM X-Force ID: 91149.
Ibm Integrated Management Module Firmware 3.50
Ibm Integrated Management Module Firmware 3.55
Ibm Integrated Management Module Firmware 3.56
Ibm Integrated Management Module Firmware 3.65
Ibm Integrated Management Module Firmware 3.67
445
VMScore
CVE-2014-0860
The firmware prior to 3.66E in IBM BladeCenter Advanced Management Module (AMM), the firmware prior to 1.43 in IBM Integrated Management Module (IMM), and the firmware prior to 4.15 in IBM Integrated Management Module II (IMM2) contains cleartext IPMI credentials, which allows ma...
Ibm Integrated Management Module Firmware
Ibm Integrated Management Module -
Ibm Advanced Management Module Firmware
Ibm Advanced Management Module -
Ibm Integrated Management Module Ii Firmware
Ibm Integrated Management Module Ii -
356
VMScore
CVE-2017-3744
In the IMM2 firmware of Lenovo System x servers, remote commands issued by LXCA or other utilities may be captured in the First Failure Data Capture (FFDC) service log if the service log is generated when that remote command is running. Captured command data may contain clear tex...
Lenovo Integrated Management Module Firmware
Ibm Integrated Management Module Firmware
516
VMScore
CVE-2014-0881
The TPM on Integrated Management Module II (IMM2) on IBM Flex System x222 servers with firmware 1.00 up to and including 3.56 allows remote malicious users to obtain sensitive key information or cause a denial of service by leveraging an incorrect configuration. IBM X-Force ID: 9...
Ibm Integrated Management Module Firmware
445
VMScore
CVE-2019-6157
In various firmware versions of Lenovo System x, the integrated management module II (IMM2)'s first failure data capture (FFDC) includes the web server's private key in the generated log file for support.
Lenovo Flex System X240 M4 Firmware
Lenovo Flex System X240 M5 Firmware
Lenovo Flex System X280 X6 Firmware
Lenovo Flex System X440 M4 Firmware
Lenovo Flex System X480 X6 Firmware
Lenovo Flex System X880 Firmware
Lenovo Nextscale Nx360 M5 Firmware
Lenovo System X3250 M6 Firmware
Lenovo System X3500 M5 Firmware
Lenovo System X3550 M5 Firmware
Lenovo System X3650 M5 Firmware
Lenovo System X3750 M4 Firmware
Lenovo System X3850 X6 Firmware
Lenovo System X3950 X6 Firmware
Ibm Bladecenter Hs22 Firmware
Ibm Bladecenter Hs23 Firmware
Ibm Bladecenter Hs23e Firmware
Ibm Flex System X220 M4 Firmware
Ibm Flex System X222 M4 Firmware
Ibm Flex System X240 M4 Firmware
Ibm Flex System X280 M4 Firmware
Ibm Flex System X440 M4 Firmware
801
VMScore
CVE-2021-3723
A command injection vulnerability was reported in the Integrated Management Module (IMM) of legacy IBM System x 3550 M3 and IBM System x 3650 M3 servers that could allow the execution of operating system commands over an authenticated SSH or Telnet session.
Ibm System X3550 M3 Firmware
Ibm System X3650 M3 Firmware
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started