CVE-2019-6260 — CRITICAL (9.8)

Vulnerability Description

The ASPEED ast2400 and ast2500 Baseband Management Controller (BMC) hardware and firmware implement Advanced High-performance Bus (AHB) bridges, which allow arbitrary read and write access to the BMC's physical address space from the host (or from the network in unusual cases where the BMC console uart is attached to a serial concentrator). This CVE applies to the specific cases of iLPC2AHB bridge Pt I, iLPC2AHB bridge Pt II, PCIe VGA P2A bridge, DMA from/to arbitrary BMC memory via X-DMA, UART-based SoC Debug interface, LPC2AHB bridge, PCIe BMC P2A bridge, and Watchdog setup.

CVSS Score

9.8

CRITICAL

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Aspeedtech	Ast2400 Firmware	All versions
Aspeedtech	Ast2400	-
Aspeedtech	Ast2500 Firmware	All versions
Aspeedtech	Ast2500	-
Netapp	Fas\/Aff Baseboard Management Controller	All versions

References

https://security.netapp.com/advisory/ntap-20190314-0001/PatchThird Party Advisory
https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brThird Party Advisory
https://www.flamingspork.com/blog/2019/01/23/cve-2019-6260:-gaining-control-of-bThird Party Advisory
https://security.netapp.com/advisory/ntap-20190314-0001/PatchThird Party Advisory
https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brThird Party Advisory
https://www.flamingspork.com/blog/2019/01/23/cve-2019-6260:-gaining-control-of-bThird Party Advisory

FAQ

What is CVE-2019-6260?

CVE-2019-6260 is a vulnerability with a CVSS score of 9.8 (CRITICAL). The ASPEED ast2400 and ast2500 Baseband Management Controller (BMC) hardware and firmware implement Advanced High-performance Bus (AHB) bridges, which allow arbitrary read and write access to the BMC'...

How severe is CVE-2019-6260?

CVE-2019-6260 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.

Is there a patch for CVE-2019-6260?

Check the references section above for vendor advisories and patch information. Affected products include: Aspeedtech Ast2400 Firmware, Aspeedtech Ast2400, Aspeedtech Ast2500 Firmware, Aspeedtech Ast2500, Netapp Fas\/Aff Baseboard Management Controller.