CVE-2020-5633 Information
Jun 07, 2022
cve
Description
Multiple NEC products (Express5800/T110j Express5800/T110j-S Express5800/T110j (2nd-Gen) Express5800/T110j-S (2nd-Gen) iStorage NS100Ti and Express5800/GT110j) where Baseboard Management Controller (BMC) firmware Rev1.09 and earlier is applied allows remote attackers to bypass authentication and then obtain/modify BMC setting information obtain monitoring information or reboot/shut down the vulnerable product via unspecified vectors.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Reference
https://jpn.nec.com/security-info/secinfo/nv21-002.html https://www.support.nec.co.jp/View.aspx?id=9010108754 https://jvn.jp/en/jp/JVN38752718/index.html
Attack Complexity
LOW
Privileges Required
NONE
User Interaction Required
NONE
Scope
NONE
Confidentiality Impact
UNCHANGED
Integrity Impact
HIGH
Availability Impact
HIGH
Base Score
HIGH
Base Severity
9.8
Share on: