Shodan
Maps
Images
Monitor
Developer
More...
Dashboard
View Api Docs
Vulnerabilities
By Date
Known Exploited
Advanced Search
Vulnerable Software
Vendors
Products
Vulnerability Details CVE-2021-26732
A broken access control vulnerability in the First_network_func function of spx_restservice allows an attacker to arbitrarily change the network configuration of the BMC. This issue affects: Lanner Inc IAC-AST2500A standard firmware version 1.10.0.
Exploit prediction scoring system (EPSS) score
EPSS Score
0.0
EPSS Ranking
6.9%
CVSS Severity
CVSS v3 Score
6.5
References
https://www.nozominetworks.com/blog/vulnerabilities-in-bmc-firmware-affect-ot-iot-device-security-part-1/
https://www.nozominetworks.com/labs/vulnerability-advisories/cve-2021-26732/
https://www.nozominetworks.com/blog/vulnerabilities-in-bmc-firmware-affect-ot-iot-device-security-part-1/
https://www.nozominetworks.com/labs/vulnerability-advisories/cve-2021-26732/
Products affected by CVE-2021-26732
Lannerinc
»
Iac-Ast2500a
»
Version:
N/A
cpe:2.3:h:lannerinc:iac-ast2500a:-
Lannerinc
»
Iac-Ast2500a Firmware
»
Version:
1.10.0
cpe:2.3:o:lannerinc:iac-ast2500a_firmware:1.10.0
Products
Monitor
Search Engine
Developer API
Maps
Bulk Data
Images
Snippets
Pricing
Membership
API Subscriptions
Enterprise
Contact Us
support@shodan.io
Shodan ® - All rights reserved