CVE-2021-39296

CVE-2021-39296

EPSS 2.9%

In OpenBMC 2.9, crafted IPMI messages allow an attacker to bypass authentication and gain full control of the system.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/google/security-research/security/advisories/GHSA-gg9x-v835-m48q https://github.com/openbmc/openbmc https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00737.html