CVE-2012-2187 (GCVE-0-2012-2187)
Vulnerability from cvelistv5
Published
2012-09-25 20:00
Modified
2024-08-06 19:26
Severity ?
CWE
  • n/a
Summary
IBM Remote Supervisor Adapter II firmware for System x3650, x3850 M2, and x3950 M2 1.13 and earlier generates weak RSA keys, which makes it easier for attackers to defeat cryptographic protection mechanisms via unspecified vectors.
References
psirt@us.ibm.comhttp://www.ibm.com/connections/blogs/PSIRT/entry/security_bulletin_weak_key_vulnerability_in_remote_supervisor_adapter_ii_firmware_cve_2012_2187_ibm_system_x3650_system_x3850_m2_system_x3950_m25Vendor Advisory
psirt@us.ibm.comhttp://www.securityfocus.com/bid/55609
psirt@us.ibm.comhttps://www-947.ibm.com/support/entry/myportal/docdisplay?lndocid=MIGR-5091525
af854a3a-2127-422b-91ae-364da2661108http://www.ibm.com/connections/blogs/PSIRT/entry/security_bulletin_weak_key_vulnerability_in_remote_supervisor_adapter_ii_firmware_cve_2012_2187_ibm_system_x3650_system_x3850_m2_system_x3950_m25Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/55609
af854a3a-2127-422b-91ae-364da2661108https://www-947.ibm.com/support/entry/myportal/docdisplay?lndocid=MIGR-5091525
Impacted products
Vendor Product Version
n/a n/a Version: n/a
Show details on NVD website

To clipboard 

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T19:26:09.355Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "55609",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/55609"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://www-947.ibm.com/support/entry/myportal/docdisplay?lndocid=MIGR-5091525"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.ibm.com/connections/blogs/PSIRT/entry/security_bulletin_weak_key_vulnerability_in_remote_supervisor_adapter_ii_firmware_cve_2012_2187_ibm_system_x3650_system_x3850_m2_system_x3950_m25"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2012-09-19T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "IBM Remote Supervisor Adapter II firmware for System x3650, x3850 M2, and x3950 M2 1.13 and earlier generates weak RSA keys, which makes it easier for attackers to defeat cryptographic protection mechanisms via unspecified vectors."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2013-02-12T10:00:00",
        "orgId": "9a959283-ebb5-44b6-b705-dcc2bbced522",
        "shortName": "ibm"
      },
      "references": [
        {
          "name": "55609",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/55609"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://www-947.ibm.com/support/entry/myportal/docdisplay?lndocid=MIGR-5091525"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.ibm.com/connections/blogs/PSIRT/entry/security_bulletin_weak_key_vulnerability_in_remote_supervisor_adapter_ii_firmware_cve_2012_2187_ibm_system_x3650_system_x3850_m2_system_x3950_m25"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@us.ibm.com",
          "ID": "CVE-2012-2187",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "IBM Remote Supervisor Adapter II firmware for System x3650, x3850 M2, and x3950 M2 1.13 and earlier generates weak RSA keys, which makes it easier for attackers to defeat cryptographic protection mechanisms via unspecified vectors."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "55609",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/55609"
            },
            {
              "name": "https://www-947.ibm.com/support/entry/myportal/docdisplay?lndocid=MIGR-5091525",
              "refsource": "MISC",
              "url": "https://www-947.ibm.com/support/entry/myportal/docdisplay?lndocid=MIGR-5091525"
            },
            {
              "name": "http://www.ibm.com/connections/blogs/PSIRT/entry/security_bulletin_weak_key_vulnerability_in_remote_supervisor_adapter_ii_firmware_cve_2012_2187_ibm_system_x3650_system_x3850_m2_system_x3950_m25",
              "refsource": "CONFIRM",
              "url": "http://www.ibm.com/connections/blogs/PSIRT/entry/security_bulletin_weak_key_vulnerability_in_remote_supervisor_adapter_ii_firmware_cve_2012_2187_ibm_system_x3650_system_x3850_m2_system_x3950_m25"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "9a959283-ebb5-44b6-b705-dcc2bbced522",
    "assignerShortName": "ibm",
    "cveId": "CVE-2012-2187",
    "datePublished": "2012-09-25T20:00:00",
    "dateReserved": "2012-04-04T00:00:00",
    "dateUpdated": "2024-08-06T19:26:09.355Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "nvd": "{\"cve\":{\"id\":\"CVE-2012-2187\",\"sourceIdentifier\":\"psirt@us.ibm.com\",\"published\":\"2012-09-25T20:55:00.877\",\"lastModified\":\"2025-04-11T00:51:21.963\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"IBM Remote Supervisor Adapter II firmware for System x3650, x3850 M2, and x3950 M2 1.13 and earlier generates weak RSA keys, which makes it easier for attackers to defeat cryptographic protection mechanisms via unspecified vectors.\"},{\"lang\":\"es\",\"value\":\"El firmware del IBM Remote Supervisor Adapter II para Sistemas x3650, x3850 M2 y x3950 M2 v1.13 y anteriores generan claves RSA d\u00e9biles, lo que hace que sea m\u00e1s f\u00e1cil saltarse los mecanismos criptogr\u00e1ficos de protecci\u00f3n para atacantes remotos a trav\u00e9s de vectores no especificados.\\r\\n\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:P/I:N/A:N\",\"baseScore\":5.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":10.0,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-310\"}]}],\"configurations\":[{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:remote_supervisor_adapter_ii_firmware:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"1.13\",\"matchCriteriaId\":\"2E736748-3B17-4448-A0A3-9FA7958B76DF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:remote_supervisor_adapter_ii_firmware:1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D1FD0CE1-7E7E-48D7-A58B-99FDA5F1E534\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:remote_supervisor_adapter_ii_firmware:1.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"550B79DE-8189-4CC4-9DC7-0C8718BDE339\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:remote_supervisor_adapter_ii_firmware:1.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4E746090-0764-4A98-AC4C-D2F9BDF80602\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:remote_supervisor_adapter_ii_firmware:1.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"374C7AC6-1825-4814-8DFA-405254E405EA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:remote_supervisor_adapter_ii_firmware:1.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DC9EC609-A69C-4793-9769-84DF9AFE2E27\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:remote_supervisor_adapter_ii_firmware:1.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BDD3419A-C62B-4BEF-BCD1-7AFE100BCA14\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:remote_supervisor_adapter_ii_firmware:1.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0826810A-8D83-4922-AE47-A2D00ADDA952\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:remote_supervisor_adapter_ii_firmware:1.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D3851293-B6E6-4A7A-8EA3-442A2E77B772\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:remote_supervisor_adapter_ii_firmware:1.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E24E2370-30AE-4FB5-962A-A59773DAB672\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:remote_supervisor_adapter_ii_firmware:1.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3F6E0B99-EA63-4E09-8F35-61FD435835AB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:remote_supervisor_adapter_ii_firmware:1.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E98F8EA7-DC0A-49DE-8F38-8242191A71F0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:remote_supervisor_adapter_ii_firmware:1.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BDBBC639-9A61-4301-8D4A-FA742EABCF41\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ibm:remote_supervisor_adapter_ii_firmware:1.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"70DC13FE-C1D4-4F60-8A69-9C0EA993A994\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:ibm:x3650:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C0C88593-6B6A-4772-AF94-63A78FC93121\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:ibm:x3850:m2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB8280F0-09FB-4BC6-B384-CF7CAC9DF3EA\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:ibm:x3950:m2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"68E36E55-9F24-4E8B-927D-AFBA5514389A\"}]}]}],\"references\":[{\"url\":\"http://www.ibm.com/connections/blogs/PSIRT/entry/security_bulletin_weak_key_vulnerability_in_remote_supervisor_adapter_ii_firmware_cve_2012_2187_ibm_system_x3650_system_x3850_m2_system_x3950_m25\",\"source\":\"psirt@us.ibm.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/55609\",\"source\":\"psirt@us.ibm.com\"},{\"url\":\"https://www-947.ibm.com/support/entry/myportal/docdisplay?lndocid=MIGR-5091525\",\"source\":\"psirt@us.ibm.com\"},{\"url\":\"http://www.ibm.com/connections/blogs/PSIRT/entry/security_bulletin_weak_key_vulnerability_in_remote_supervisor_adapter_ii_firmware_cve_2012_2187_ibm_system_x3650_system_x3850_m2_system_x3950_m25\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/55609\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www-947.ibm.com/support/entry/myportal/docdisplay?lndocid=MIGR-5091525\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
  }
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
  • Confirmed: The vulnerability is confirmed from an analyst perspective.
  • Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
  • Patched: This vulnerability was successfully patched by the user reporting the sighting.
  • Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
  • Not confirmed: The user expresses doubt about the veracity of the vulnerability.
  • Not patched: This vulnerability was not successfully patched by the user reporting the sighting.