CVE-2021-39295

Severity CVSS v4.0:
Pending analysis
Type:
CWE-400 Uncontrolled Resource Consumption ('Resource Exhaustion')
Publication date:
15/04/2023
Last modified:
06/02/2025

Description

In OpenBMC 2.9, crafted IPMI messages allow an attacker to cause a denial of service to the BMC via the netipmid (IPMI lan+) interface.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:openbmc-project:openbmc:2.9.0:-:*:*:*:*:*:*