CVE-2021-29695 - OpenCVE

IBM Host firmware for LC-class Systems could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request that would allow them to delete arbitrary files on the system. IBM X-Force ID: 200558.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact None

Integrity Impact High

Availability Impact High

User Interaction None

Attack Vector Network

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact None

Integrity Impact High

Availability Impact None

User Interaction None

Access Vector Network

Access Complexity Low

Authentication Single

Confidentiality Impact None

Integrity Impact Complete

Availability Impact Complete

AV:N/AC:L/Au:S/C:N/I:C/A:C

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Ibm	8335-gca 8335-gca Firmware 8335-gta 8335-gta Firmware 8335-gtb 8335-gtb Firmware

Configuration 1 [-]

AND

cpe:2.3:h:ibm:8335-gca:-:*:*:*:*:*:*:*

cpe:2.3:o:ibm:8335-gca_firmware:op820:*:*:*:*:*:*:*

Configuration 2 [-]

AND

cpe:2.3:h:ibm:8335-gta:-:*:*:*:*:*:*:*

cpe:2.3:o:ibm:8335-gta_firmware:op820:*:*:*:*:*:*:*

Configuration 3 [-]

AND

cpe:2.3:h:ibm:8335-gtb:-:*:*:*:*:*:*:*

cpe:2.3:o:ibm:8335-gtb_firmware:op820:*:*:*:*:*:*:*

No data.

References

Link	Providers
https://exchange.xforce.ibmcloud.com/vulnerabilities/200558
https://www.ibm.com/support/pages/node/6454303

History

No history.

MITRE

Status: PUBLISHED

Assigner: ibm

Published: 2021-05-25T16:00:17.247810Z

Updated: 2024-09-16T20:59:08.689Z

Reserved: 2021-03-31T00:00:00

Link: CVE-2021-29695

Vulnrichment

No data.

NVD

Status : Analyzed

Published: 2021-05-25T17:15:08.223

Modified: 2021-06-01T13:51:53.860

Link: CVE-2021-29695

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "8335-GTB", "vendor": "IBM", "versions": [{"status": "affected", "version": "OP820"}]}, {"product": "8335-GTA", "vendor": "IBM", "versions": [{"status": "affected", "version": "OP820"}]}, {"product": "8335-GCA", "vendor": "IBM", "versions": [{"status": "affected", "version": "OP820"}]}], "datePublic": "2021-05-24T00:00:00", "descriptions": [{"lang": "en", "value": "IBM Host firmware for LC-class Systems could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request that would allow them to delete arbitrary files on the system. IBM X-Force ID: 200558."}], "metrics": [{"cvssV3_0": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 4.9, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "exploitCodeMaturity": "UNPROVEN", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "remediationLevel": "OFFICIAL_FIX", "reportConfidence": "CONFIRMED", "scope": "UNCHANGED", "temporalScore": 4.3, "temporalSeverity": "MEDIUM", "userInteraction": "NONE", "vectorString": "CVSS:3.0/PR:H/S:U/UI:N/AC:L/C:N/I:H/AV:N/A:N/E:U/RC:C/RL:O", "version": "3.0"}}], "problemTypes": [{"descriptions": [{"description": "File Manipulation", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2021-05-25T16:00:17", "orgId": "9a959283-ebb5-44b6-b705-dcc2bbced522", "shortName": "ibm"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "https://www.ibm.com/support/pages/node/6454303"}, {"name": "ibm-bmc-cve202129695-dir-traversal (200558)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/200558"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "psirt@us.ibm.com", "DATE_PUBLIC": "2021-05-24T00:00:00", "ID": "CVE-2021-29695", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "8335-GTB", "version": {"version_data": [{"version_value": "OP820"}]}}, {"product_name": "8335-GTA", "version": {"version_data": [{"version_value": "OP820"}]}}, {"product_name": "8335-GCA", "version": {"version_data": [{"version_value": "OP820"}]}}]}, "vendor_name": "IBM"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "IBM Host firmware for LC-class Systems could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request that would allow them to delete arbitrary files on the system. IBM X-Force ID: 200558."}]}, "impact": {"cvssv3": {"BM": {"A": "N", "AC": "L", "AV": "N", "C": "N", "I": "H", "PR": "H", "S": "U", "UI": "N"}, "TM": {"E": "U", "RC": "C", "RL": "O"}}}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "File Manipulation"}]}]}, "references": {"reference_data": [{"name": "https://www.ibm.com/support/pages/node/6454303", "refsource": "CONFIRM", "title": "IBM Security Bulletin 6454303 (8335-GCA)", "url": "https://www.ibm.com/support/pages/node/6454303"}, {"name": "ibm-bmc-cve202129695-dir-traversal (200558)", "refsource": "XF", "title": "X-Force Vulnerability Report", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/200558"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-03T22:18:03.084Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://www.ibm.com/support/pages/node/6454303"}, {"name": "ibm-bmc-cve202129695-dir-traversal (200558)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/200558"}]}]}, "cveMetadata": {"assignerOrgId": "9a959283-ebb5-44b6-b705-dcc2bbced522", "assignerShortName": "ibm", "cveId": "CVE-2021-29695", "datePublished": "2021-05-25T16:00:17.247810Z", "dateReserved": "2021-03-31T00:00:00", "dateUpdated": "2024-09-16T20:59:08.689Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:h:ibm:8335-gca:-:*:*:*:*:*:*:*", "matchCriteriaId": "8248B644-C241-47A3-97E8-7BEFB49BBA9B", "vulnerable": false}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:o:ibm:8335-gca_firmware:op820:*:*:*:*:*:*:*", "matchCriteriaId": "9872FE01-5CAF-43C6-A89C-965128B99148", "vulnerable": true}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:h:ibm:8335-gta:-:*:*:*:*:*:*:*", "matchCriteriaId": "72984661-F71F-4E16-A29B-8FE35CA20968", "vulnerable": false}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:o:ibm:8335-gta_firmware:op820:*:*:*:*:*:*:*", "matchCriteriaId": "14943D3A-7074-46F7-B359-84F00495EBBA", "vulnerable": true}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:h:ibm:8335-gtb:-:*:*:*:*:*:*:*", "matchCriteriaId": "2620904D-3D2E-4B4C-BC9C-FCDABFDAD157", "vulnerable": false}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:o:ibm:8335-gtb_firmware:op820:*:*:*:*:*:*:*", "matchCriteriaId": "4C616D01-40E6-4BDC-A2EE-4D9323DB6BFD", "vulnerable": true}], "negate": false, "operator": "OR"}], "operator": "AND"}], "cveTags": [], "descriptions": [{"lang": "en", "value": "IBM Host firmware for LC-class Systems could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request that would allow them to delete arbitrary files on the system. IBM X-Force ID: 200558."}, {"lang": "es", "value": "IBM Host firmware para LC-class Systems, podr\u00eda permitir a un atacante remoto saltar directorios en el sistema. Un atacante podr\u00eda enviar una petici\u00f3n de URL especialmente dise\u00f1ada que podr\u00eda permitirle eliminar archivos arbitrarios en el sistema. IBM X-Force ID: 200558"}], "id": "CVE-2021-29695", "lastModified": "2021-06-01T13:51:53.860", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "COMPLETE", "baseScore": 8.5, "confidentialityImpact": "NONE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:L/Au:S/C:N/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 9.2, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 4.9, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N", "version": "3.0"}, "exploitabilityScore": 1.2, "impactScore": 3.6, "source": "psirt@us.ibm.com", "type": "Secondary"}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.2, "impactScore": 5.2, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2021-05-25T17:15:08.223", "references": [{"source": "psirt@us.ibm.com", "tags": ["VDB Entry", "Vendor Advisory"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/200558"}, {"source": "psirt@us.ibm.com", "tags": ["Vendor Advisory"], "url": "https://www.ibm.com/support/pages/node/6454303"}], "sourceIdentifier": "psirt@us.ibm.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-22"}], "source": "nvd@nist.gov", "type": "Primary"}]}