Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
Bookmark
|
Subscribe
|
7353
Views
0
Helpful
6
Replies

IPMI v2.0 password hash disclosure Vulnerability

mkhriesa
Level 1
Level 1

‎05-10-2018 05:13 AM - edited ‎03-13-2019 10:14 PM

we have IPMI v2.0 password hash disclosure Vulnerability on the UCS where we installed the cucm 10.5

I see from the solution is to disable the IPMI  , could you please advise how and provide more details for the solution of this bug

2 people had this problem
Labels:
0 Helpful
6 Replies 6

Gregory Brunn
Spotlight

‎05-11-2018 05:54 PM

Is this being shown as the result of a security scan, can you shut down your cimc management interface run the scan again?  This is of course your cimc is utilizing the dedicated m port and not shared LoM port.

 

 

0 Helpful

Gregory Brunn
Spotlight

‎05-11-2018 05:54 PM

Is this being shown as the result of a security scan, can you shut down your cimc management interface run the scan again?  This is of course your cimc is utilizing the dedicated m port and not shared LoM port

 

0 Helpful

mkhriesa
Level 1
Level 1
In response to Gregory Brunn

‎05-11-2018 11:28 PM

Yes its a security scan, if its from cimc how we can solve it?

0 Helpful

Gregory Brunn
Spotlight
In response to mkhriesa

‎05-12-2018 10:02 AM

You can disable the Cimc.

Also you can update bios and cimc to see if that solves it would need to do more research on if the update would fix it.
0 Helpful

Gregory Brunn
Spotlight
In response to Gregory Brunn

‎05-12-2018 10:30 AM

https://www.cisco.com/c/en/us/about/security-center/ipmi-vulnerabilities.html

I would read this and disable tech support and ensure IPMI over lan is disabled.
0 Helpful

mkhriesa
Level 1
Level 1
In response to Gregory Brunn

‎05-15-2018 12:44 AM

Is there any affect if we disable it?

0 Helpful
Customers Also Viewed These Support Documents
Top