CVE-2020-5633

Sažetak

Multiple NEC products (Express5800/T110j, Express5800/T110j-S, Express5800/T110j (2nd-Gen), Express5800/T110j-S (2nd-Gen), iStorage NS100Ti, and Express5800/GT110j) where Baseboard Management Controller (BMC) firmware Rev1.09 and earlier is applied allows remote attackers to bypass authentication and then obtain/modify BMC setting information, obtain monitoring information, or reboot/shut down the vulnerable product via unspecified vectors.

Reference

https://jpn.nec.com/security-info/secinfo/nv21-002.html
https://jvn.jp/en/jp/JVN38752718/index.html
https://www.support.nec.co.jp/View.aspx?id=9010108754

CVSS

Base:	9.0
Impact:	8.5
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	COMPLETE

CVSS vektor

AV:N/AC:L/Au:N/C:P/I:P/A:C

Zadnje važnije ažuriranje

21-01-2021 - 19:00

Objavljeno

13-01-2021 - 10:15