Intel: >> Intelligent Platform Management Interface >> 2.0 Security Vulnerabilities
The IPMI 2.0 specification supports RMCP+ Authenticated Key-Exchange Protocol (RAKP) authentication, which allows remote attackers to obtain password hashes and conduct offline password guessing attacks by obtaining the HMAC from a RAKP message 2 response from a BMC.
CVSS Score
7.5
EPSS Score
0.773
Published
2013-07-08