private/login.ssi in the Advanced Management Module (AMM) on the IBM BladeCenter, including the BladeCenter H with BPET36H 54, allows remote malicious users to discover the access roles and scopes of arbitrary user accounts via a modified WEBINDEX parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ibm advanced_management_module 1.36h |
||
ibm bladecenter e |
||
ibm bladecenter s |
||
ibm bladecenter t |
||
ibm bladecenter hs12 |
||
ibm bladecenter ls21 |
||
ibm bladecenter ls41 |
||
ibm bladecenter ht |
||
ibm bladecenter h |
||
ibm bladecenter js21 |
||
ibm bladecenter hs21 |
||
ibm bladecenter hs21_xm |
||
ibm bladecenter js22 |
||
ibm bladecenter hc10 |
||
ibm bladecenter ls20 |
||
ibm bladecenter js12 |
||
ibm bladecenter hs20 |
||
ibm bladecenter qs21 |
||
ibm bladecenter qs22 |