Miembros de
Boletines de Vulnerabilidades |
IBM Security Bulletin: IBM PowerVC - Clear text passwords and access tokens found on the PowerVC management node (CVE-2014-3093) |
|
Información sobre el sistema |
|
| Software afectado | IBM |
Descripción |
|
|
PowerVC is exposing clear text passwords and access tokens to local users via log and configuration files, command line arguments, and diagnostic results. CVE(s): CVE-2014-3093 Affected product(s) and affected version(s): PowerVC Express Edition 1.2.0.0 through 1.2.0.2 PowerVC Express Edition 1.2.1.0 through 1.2.1.1 PowerVC Standard Edition 1.2.0.0 through 1.2.0.2 PowerVC Standard Edition 1.2.1.0 through 1.2.1.1 Refer to the following reference URLs for remediation and additional More info: https://www-304.ibm.com/connections/blogs/PSIRT/entry/ibm_security_bulletin_ibm_powervc_clear_text_passwords_and_access_tokens_found_on_the_powervc_management_node_cve_2014_3093?lang=en_us |
|
Identificadores estándar |
|
| Propiedad | Valor |
| CVE | CVE-2014-3093 ,CVE-2014-3466 ,CVE-2014-0907 ,CVE-2014-0897 ,CVE-2014-3033 ,CVE-2014-4790 ,CVE-2014-3040 and CVE-2013-6335. |
Histórico de versiones |
||
| Versión | Comentario | Fecha |
| 1.0 | Advisory issued | 2014-08-28 |