Vulnerability in IPMI for SN6000 appliances
| Advisory ID | CVE Number | Date discovered | Severity | Advisory revision |
|---|---|---|---|---|
| STORM-2015-014 | 11/17/2015 | low | v3 |
Vulnerability details
The Intelligent Platform Management Interface (IPMI) is a set of computer interface specifications for an autonomous computer subsystem that provides management and monitoring capabilities independently of the host system’s CPU, firmware (BIOS or UEFI) and operating system. The IPMI firmware version embedded in SN6000 has to be updated in order to solve security issues.
Impacted products
| Products | Severity | Detail |
|---|---|---|
| Stormshield Network Security | low | SN6000 appliances produced before july 2015 ships a vulnerable IPMI |
Revisions
| Version | Date | Description |
|---|---|---|
| v1 | 11/17/2015 | Initial release |
| v2 | 01/11/2016 | Add a link in solution section |
| v3 | 01/13/2016 | Updates links in solution section |
Stormshield Network Security |
CVSS v2 Overall Score: 1.3
|
Analysis |
Impacted version |
|
The embedded IPMI firmware version suffers from security vulnerabilities. Connect to the IPMI mainpage using a web browser. If the main page displays a Firmware revision lower than 03.36, you have to update. |
|
Workaround solution |
Solution |
|
You must filter access to IPMI network interface to a trusted network only. |
The IPMI firmware version 03.36 fixes this vulnerability. You can find a document explaining how to update the IPMI firmware in french: https://mystormshield.eu/ecm/ui/download-document?id=67361f6c-5681-4294-bef8-06d354c6be69&lang=fr in english: https://mystormshield.eu/ecm/ui/download-document?id=67361f6c-5681-4294-bef8-06d354c6be69&lang=en You can download the IPMI firmware here: https://master-data.netasq.com/tools/SN6000_IPMI_Firmware_V336.zip |
| Access vector | Access complexity | Authentication | Confidentiality impact | Integrity impact | Availability impact |
|---|---|---|---|---|---|
| Adjacent Network | Medium | None | None | None | None |
| CVSS Base score: 0 | CVSS Vector: (AV:A/AC:M/Au:N/C:N/I:N/A:N) |
| Exploitability | Remediation Level | Report Confidence |
|---|---|---|
| Unproven that exploit exists | Official fix | Confirmed |
| CVSS Temporal score: 0 | CVSS Vector: (AV:A/AC:M/Au:N/C:N/I:N/A:N/E:U/RL:OF/RC:C) |
| Collateral Damage Potential | Target Distribution |
|---|---|
| High | Low [0-25%] |
| CVSS Environmental score: 1.3 | CVSS Vector: (AV:A/AC:M/Au:N/C:N/I:N/A:N/E:U/RL:OF/RC:C/CDP:H/TD:L/CR:ND/IR:ND/AR:ND) |