VDB

GCVE-VVD-MAGEIA-2023-135

GCVE-VVD-MAGEIA-2023-135
Advisory Published
Vulnetix · Advisory published December 7, 2023
It's been found that multiple functions in ipmitool before 1.8.19 neglect proper checking of the data received from a remote LAN party, which may lead to buffer overflows and potentially to remote code execution on the ipmitool side. This is especially dangerous if ipmitool is run as a privileged user. This problem is fixed in version 1.8.19. (CVE-2020-5208)
Download JSON Open in Console

Affected Products

VendorProductVersionsPlatforms
Mageiahg-git0 (affected), 1.0.3-1.mga9 (unaffected)
Mageiaipmitool0 (affected), 1.8.18-7.1.mga8 (unaffected), 0 (affected), 1.8.18-7.1.mga8 (unaffected)

References

Updated ipmitool packages fix security vulnerability
advisory
Updated ipmitool packages fix security vulnerability
issue
Updated ipmitool packages fix security vulnerability
advisory
Updated hg-git package fixes an incompatability
advisory
Updated hg-git package fixes an incompatability
issue

Browse GCVE Records

100 records in the GCVE database · Updated April 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

Open in Console Download JSON
$ Console Community · 100/wk Open console ›