Ibm Openbmc
6 CVEs affecting Ibm Openbmc. Latest disclosed: 2026-05-27. Critical: 0, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-35124 | High | 7.5 | 2024-08-13 | A vulnerability in the combination of the OpenBMC's FW1050.00 through FW1050.10, FW1030.00 through FW1030.50, and FW1020.00 through FW1020.60 default password… |
CVE-2024-31916 | High | 7.5 | 2024-06-27 | IBM OpenBMC FW1050.00 through FW1050.10 BMCWeb HTTPS server component could disclose sensitive URI content to an unauthorized actor that bypasses authenticatio… |
CVE-2021-38961 | Medium | 6.1 | 2021-12-27 | IBM OPENBMC OP910 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the int… |
CVE-2026-7254 | Medium | 5.3 | 2026-05-27 | IBM OPENBMC FW1110.00 through FW1110.11 is vulnerable to denial of service attacks by unauthenticated network users. |
CVE-2021-38960 | Medium | 5.3 | 2022-02-04 | IBM OPENBMC OP920, OP930, and OP940 could allow an unauthenticated user to obtain sensitive information. IBM X-Force ID: 212047. |
CVE-2022-22488 | Medium | 4.9 | 2022-11-18 | IBM OpenBMC OP910 and OP940 could allow a privileged user to cause a denial of service by uploading or deleting too many CA certificates in a short period of t… |