CVE-2012-2187 : IBM Remote Supervisor Adapter II firmware for System x3650, x3850 M2, and x3950

IBM Remote Supervisor Adapter II firmware for System x3650, x3850 M2, and x3950 M2 1.13 and earlier generates weak RSA keys, which makes it easier for attackers to defeat cryptographic protection mechanisms via unspecified vectors.

Published 2012-09-25 20:55:01

Updated 2025-04-11 00:51:22

Source IBM Corporation

View at NVD, CVE.org

Products affected by CVE-2012-2187

IBM » Remote Supervisor Adapter Ii Firmware
Versions up to, including, (<=) 1.13
cpe:2.3:a:ibm:remote_supervisor_adapter_ii_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: IBM » X3650
When used together with: IBM » X3850 » Version: M2
When used together with: IBM » X3950 » Version: M2
IBM » Remote Supervisor Adapter Ii Firmware » Version: 1.8
cpe:2.3:a:ibm:remote_supervisor_adapter_ii_firmware:1.8:*:*:*:*:*:*:*
Matching versions
When used together with: IBM » X3650
When used together with: IBM » X3850 » Version: M2
When used together with: IBM » X3950 » Version: M2
IBM » Remote Supervisor Adapter Ii Firmware » Version: 1.7
cpe:2.3:a:ibm:remote_supervisor_adapter_ii_firmware:1.7:*:*:*:*:*:*:*
Matching versions
When used together with: IBM » X3650
When used together with: IBM » X3850 » Version: M2
When used together with: IBM » X3950 » Version: M2
IBM » Remote Supervisor Adapter Ii Firmware » Version: 1.0
cpe:2.3:a:ibm:remote_supervisor_adapter_ii_firmware:1.0:*:*:*:*:*:*:*
Matching versions
When used together with: IBM » X3650
When used together with: IBM » X3850 » Version: M2
When used together with: IBM » X3950 » Version: M2
IBM » Remote Supervisor Adapter Ii Firmware » Version: 1.10
cpe:2.3:a:ibm:remote_supervisor_adapter_ii_firmware:1.10:*:*:*:*:*:*:*
Matching versions
When used together with: IBM » X3650
When used together with: IBM » X3850 » Version: M2
When used together with: IBM » X3950 » Version: M2
IBM » Remote Supervisor Adapter Ii Firmware » Version: 1.9
cpe:2.3:a:ibm:remote_supervisor_adapter_ii_firmware:1.9:*:*:*:*:*:*:*
Matching versions
When used together with: IBM » X3650
When used together with: IBM » X3850 » Version: M2
When used together with: IBM » X3950 » Version: M2
IBM » Remote Supervisor Adapter Ii Firmware » Version: 1.2
cpe:2.3:a:ibm:remote_supervisor_adapter_ii_firmware:1.2:*:*:*:*:*:*:*
Matching versions
When used together with: IBM » X3650
When used together with: IBM » X3850 » Version: M2
When used together with: IBM » X3950 » Version: M2
IBM » Remote Supervisor Adapter Ii Firmware » Version: 1.1
cpe:2.3:a:ibm:remote_supervisor_adapter_ii_firmware:1.1:*:*:*:*:*:*:*
Matching versions
When used together with: IBM » X3650
When used together with: IBM » X3850 » Version: M2
When used together with: IBM » X3950 » Version: M2
IBM » Remote Supervisor Adapter Ii Firmware » Version: 1.12
cpe:2.3:a:ibm:remote_supervisor_adapter_ii_firmware:1.12:*:*:*:*:*:*:*
Matching versions
When used together with: IBM » X3650
When used together with: IBM » X3850 » Version: M2
When used together with: IBM » X3950 » Version: M2
IBM » Remote Supervisor Adapter Ii Firmware » Version: 1.11
cpe:2.3:a:ibm:remote_supervisor_adapter_ii_firmware:1.11:*:*:*:*:*:*:*
Matching versions
When used together with: IBM » X3650
When used together with: IBM » X3850 » Version: M2
When used together with: IBM » X3950 » Version: M2
IBM » Remote Supervisor Adapter Ii Firmware » Version: 1.4
cpe:2.3:a:ibm:remote_supervisor_adapter_ii_firmware:1.4:*:*:*:*:*:*:*
Matching versions
When used together with: IBM » X3650
When used together with: IBM » X3850 » Version: M2
When used together with: IBM » X3950 » Version: M2
IBM » Remote Supervisor Adapter Ii Firmware » Version: 1.3
cpe:2.3:a:ibm:remote_supervisor_adapter_ii_firmware:1.3:*:*:*:*:*:*:*
Matching versions
When used together with: IBM » X3650
When used together with: IBM » X3850 » Version: M2
When used together with: IBM » X3950 » Version: M2
IBM » Remote Supervisor Adapter Ii Firmware » Version: 1.6
cpe:2.3:a:ibm:remote_supervisor_adapter_ii_firmware:1.6:*:*:*:*:*:*:*
Matching versions
When used together with: IBM » X3650
When used together with: IBM » X3850 » Version: M2
When used together with: IBM » X3950 » Version: M2
IBM » Remote Supervisor Adapter Ii Firmware » Version: 1.5
cpe:2.3:a:ibm:remote_supervisor_adapter_ii_firmware:1.5:*:*:*:*:*:*:*
Matching versions
When used together with: IBM » X3650
When used together with: IBM » X3850 » Version: M2
When used together with: IBM » X3950 » Version: M2

Exploit prediction scoring system (EPSS) score for CVE-2012-2187

EPSS FAQ

0.27%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 47 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2012-2187

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
5.0	MEDIUM	AV:N/AC:L/Au:N/C:P/I:N/A:N	10.0	2.9	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: None Availability Impact: None

CWE ids for CVE-2012-2187

CWE-310

Assigned by: nvd@nist.gov (Primary)

References for CVE-2012-2187

http://www.securityfocus.com/bid/55609

IBM Remote Supervisor Adapter II CVE-2012-2187 Security Bypass Vulnerability
http://www.ibm.com/connections/blogs/PSIRT/entry/security_bulletin_weak_key_vulnerability_in_remote_supervisor_adapter_ii_firmware_cve_2012_2187_ibm_system_x3650_system_x3850_m2_system_x3950_m25

IBM notice: The page you requested cannot be displayed
Vendor Advisory
https://www-947.ibm.com/support/entry/myportal/docdisplay?lndocid=MIGR-5091525

IBM Security Bulletin: Weak Key Vulnerability in Remote Supervisor Adapter II firmware (CVE-2012-2187) - IBM System x3650, System x3850 M2, System x3950 M2

Jump to

Vulnerability Details : CVE-2012-2187

Products affected by CVE-2012-2187

Exploit prediction scoring system (EPSS) score for CVE-2012-2187

CVSS scores for CVE-2012-2187

CWE ids for CVE-2012-2187

References for CVE-2012-2187