CVE-2023-34344
A vulnerability in the IPMI handler, where an unauthorized attacker can use certain oracles to guess a valid username
In short
An attacker can use timing or error message clues in the IPMI system to figure out which usernames exist, potentially learning valid account names without authorization. This information helps them prepare for further attacks.
Technical detail
The IPMI handler in AMI BMC contains an information disclosure vulnerability (CWE-203) that allows unauthenticated attackers to enumerate valid usernames through oracle-based side-channel attacks such as timing differences or distinct error messages. Successful exploitation requires network access to IPMI services and reveals valid account names that can facilitate subsequent unauthorized access attempts.
Summary generated and translated by AI from the official description.
AMI BMC contains a vulnerability in the IPMI
handler, where an unauthorized attacker can use certain oracles to guess a
valid username, which may lead to information disclosure.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Affected products
AMI · MegaRAC_SPxWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →