CVE-2020-5633
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
Multiple NEC products (Express5800/T110j, Express5800/T110j-S, Express5800/T110j (2nd-Gen), Express5800/T110j-S (2nd-Gen), iStorage NS100Ti, and Express5800/GT110j) where Baseboard Management Controller (BMC) firmware Rev1.09 and earlier is applied allows remote attackers to bypass authentication and then obtain/modify BMC setting information, obtain monitoring information, or reboot/shut down the vulnerable product via unspecified vectors.
Múltiples productos NEC (Express5800/T110j, Express5800/T110j-S, Express5800/T110j (2.a generación), Express5800/T110j-S (2.a generación), iStorage NS100Ti y Express5800/GT110j), donde el firmware del Baseboard Management Controller (BMC) versiones Rev1.09 y anteriores es aplicado, permite a atacantes remotos omitir una autenticación y luego obtener y modificar una información de configuración BMC, conseguir información de monitoreo o reiniciar y apagar el producto vulnerable por medio de vectores no especificados.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2020-01-06 CVE Reserved
- 2021-01-13 CVE Published
- 2024-08-04 CVE Updated
- 2024-11-17 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-287: Improper Authentication
CAPEC
References (3)
| URL | Tag | Source |
|---|---|---|
| https://jvn.jp/en/jp/JVN38752718/index.html | Third Party Advisory |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://jpn.nec.com/security-info/secinfo/nv21-002.html | 2021-01-21 | |
| https://www.support.nec.co.jp/View.aspx?id=9010108754 | 2021-01-21 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Nec Search vendor "Nec" | Baseboard Management Controller Search vendor "Nec" for product "Baseboard Management Controller" | <= 1.09 Search vendor "Nec" for product "Baseboard Management Controller" and version " <= 1.09" | - |
Affected
| in | Nec Search vendor "Nec" | Express5800\/gt110j Search vendor "Nec" for product "Express5800\/gt110j" | - | - |
Safe
|
| Nec Search vendor "Nec" | Baseboard Management Controller Search vendor "Nec" for product "Baseboard Management Controller" | <= 1.09 Search vendor "Nec" for product "Baseboard Management Controller" and version " <= 1.09" | - |
Affected
| in | Nec Search vendor "Nec" | Express5800\/t110j Search vendor "Nec" for product "Express5800\/t110j" | - | - |
Safe
|
| Nec Search vendor "Nec" | Baseboard Management Controller Search vendor "Nec" for product "Baseboard Management Controller" | <= 1.09 Search vendor "Nec" for product "Baseboard Management Controller" and version " <= 1.09" | - |
Affected
| in | Nec Search vendor "Nec" | Express5800\/t110j-s Search vendor "Nec" for product "Express5800\/t110j-s" | - | - |
Safe
|
| Nec Search vendor "Nec" | Baseboard Management Controller Search vendor "Nec" for product "Baseboard Management Controller" | <= 1.09 Search vendor "Nec" for product "Baseboard Management Controller" and version " <= 1.09" | - |
Affected
| in | Nec Search vendor "Nec" | Express5800\/t110j-s \(2nd-gen\) Search vendor "Nec" for product "Express5800\/t110j-s \(2nd-gen\)" | - | - |
Safe
|
| Nec Search vendor "Nec" | Baseboard Management Controller Search vendor "Nec" for product "Baseboard Management Controller" | <= 1.09 Search vendor "Nec" for product "Baseboard Management Controller" and version " <= 1.09" | - |
Affected
| in | Nec Search vendor "Nec" | Express5800\/t110j \(2nd-gen\) Search vendor "Nec" for product "Express5800\/t110j \(2nd-gen\)" | - | - |
Safe
|
| Nec Search vendor "Nec" | Baseboard Management Controller Search vendor "Nec" for product "Baseboard Management Controller" | <= 1.09 Search vendor "Nec" for product "Baseboard Management Controller" and version " <= 1.09" | - |
Affected
| in | Nec Search vendor "Nec" | Istorage Ns100ti Search vendor "Nec" for product "Istorage Ns100ti" | - | - |
Safe
|