CVE-2020-5208

Published: Feb 5, 2020Modified: Nov 21, 2024

8.8

Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 2.8 / Impact: 5.9

Source: NVD

Description

It's been found that multiple functions in ipmitool before 1.8.19 neglect proper checking of the data received from a remote LAN party, which may lead to buffer overflows and potentially to remote code execution on the ipmitool side. This is especially dangerous if ipmitool is run as a privileged user. This problem is fixed in version 1.8.19.

Affected (6)

Products: Ipmitool Project: Ipmitool · Debian: Debian Linux · Fedoraproject: Fedora · +1 more

Show all products

Ipmitool Project: Ipmitool · Debian: Debian Linux · Fedoraproject: Fedora · Opensuse: Leap

Ipmitool Project

1 product

1 product

1 product

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Ipmitool Project Ipmitool	Version 1.8.18

Configuration B

2 vulnerable

Vulnerable Software	Affected Versions
Debian Debian Linux	Version 8.0
Debian Debian Linux	Version 9.0

Configuration C

2 vulnerable

Vulnerable Software	Affected Versions
Fedoraproject Fedora	Version 30
Fedoraproject Fedora	Version 31

Configuration D

1 vulnerable

Vulnerable Software	Affected Versions
Opensuse Leap	Version 15.1

Related CWEs

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

References (16)

http://lists.opensuse.org/opensuse-security-announce/2020-02/msg00031.html

Source: security-advisories@github.com

Mailing ListThird Party Advisory

https://github.com/ipmitool/ipmitool/commit/e824c23316ae50beb7f7488f2055ac65e8b341f2

Source: security-advisories@github.com

PatchThird Party Advisory

https://github.com/ipmitool/ipmitool/security/advisories/GHSA-g659-9qxw-p7cp

Source: security-advisories@github.com

PatchThird Party Advisory

https://lists.debian.org/debian-lts-announce/2020/02/msg00006.html

Source: security-advisories@github.com

Mailing ListThird Party Advisory

https://lists.debian.org/debian-lts-announce/2021/06/msg00029.html

Source: security-advisories@github.com

Mailing ListThird Party Advisory

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/K2BPW66KDP4H36AGZXLED57A3O2Y6EQW/

Source: security-advisories@github.com

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RYYEKUAUTCWICM77HOEGZDVVEUJLP4BP/

Source: security-advisories@github.com

https://security.gentoo.org/glsa/202101-03

Source: security-advisories@github.com

Third Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2020-02/msg00031.html

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

https://github.com/ipmitool/ipmitool/commit/e824c23316ae50beb7f7488f2055ac65e8b341f2

Source: af854a3a-2127-422b-91ae-364da2661108

PatchThird Party Advisory

https://github.com/ipmitool/ipmitool/security/advisories/GHSA-g659-9qxw-p7cp

Source: af854a3a-2127-422b-91ae-364da2661108

PatchThird Party Advisory

https://lists.debian.org/debian-lts-announce/2020/02/msg00006.html

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

https://lists.debian.org/debian-lts-announce/2021/06/msg00029.html

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/K2BPW66KDP4H36AGZXLED57A3O2Y6EQW/

Source: af854a3a-2127-422b-91ae-364da2661108

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RYYEKUAUTCWICM77HOEGZDVVEUJLP4BP/

Source: af854a3a-2127-422b-91ae-364da2661108

https://security.gentoo.org/glsa/202101-03

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

Timeline

No history available yet.