Details of VAR-201903-1428

ID

VAR-201903-1428

CVE

CVE-2018-1992

TITLE

plural IBM Power 9 Product buffer error vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2019-003090

DESCRIPTION

The IBM Power 9 OP910, OP920, and FW910 boot firmware's bootloader is responsible for loading and validating the initial boot firmware image that drives the rest of the system's hardware initialization. The bootloader firmware contains a buffer overflow vulnerability such that, if an attacker were able to replace the initial boot firmware image with a very carefully crafted and sufficiently large, malicious replacement, it could cause the bootloader, during the load of that image, to overwrite its own instruction memory and circumvent secure boot protections, install trojans, etc. IBM X-Force ID: 154345. Vendors have confirmed this vulnerability IBM X-Force ID: 154345 It is released as.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. IBM Power System S922 and so on are all server equipment based on Power processor of American IBM company. Attackers can use this vulnerability to overwrite the bootloader's instruction memory, bypass safe boot protection, and install Trojan horse programs

Trust: 2.16

sources: NVD: CVE-2018-1992 // JVNDB: JVNDB-2019-003090 // CNVD: CNVD-2020-19868

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2020-19868

AFFECTED PRODUCTS

vendor:	ibm	model:	power system ac922	scope:	-	version:	-	Trust: 2.4
vendor:	ibm	model:	power system ac922 \	scope:	lt	version:	op920.10	Trust: 2.0
vendor:	ibm	model:	power system s922	scope:	-	version:	-	Trust: 1.4
vendor:	ibm	model:	power system l922 \	scope:	lt	version:	fw910.10	Trust: 1.0
vendor:	ibm	model:	power system ac922 \	scope:	lt	version:	op910.30	Trust: 1.0
vendor:	ibm	model:	power system lc921 \	scope:	lt	version:	op920.10	Trust: 1.0
vendor:	ibm	model:	power system s922 \	scope:	lt	version:	fw910.10	Trust: 1.0
vendor:	ibm	model:	power system s914 \	scope:	lt	version:	fw910.10	Trust: 1.0
vendor:	ibm	model:	power system lc922 \	scope:	lt	version:	op920.10	Trust: 1.0
vendor:	ibm	model:	power system s924 \	scope:	lt	version:	fw910.10	Trust: 1.0
vendor:	ibm	model:	power system h922 \	scope:	lt	version:	fw910.10	Trust: 1.0
vendor:	ibm	model:	power system h924 \	scope:	lt	version:	fw910.10	Trust: 1.0
vendor:	ibm	model:	power system h922	scope:	-	version:	-	Trust: 0.8
vendor:	ibm	model:	power system h924	scope:	-	version:	-	Trust: 0.8
vendor:	ibm	model:	power system l922	scope:	-	version:	-	Trust: 0.8
vendor:	ibm	model:	power system lc921	scope:	-	version:	-	Trust: 0.8
vendor:	ibm	model:	power system lc922	scope:	-	version:	-	Trust: 0.8
vendor:	ibm	model:	power system s914	scope:	-	version:	-	Trust: 0.8
vendor:	ibm	model:	power system s924	scope:	-	version:	-	Trust: 0.8
vendor:	ibm	model:	power fw910	scope:	eq	version:	9	Trust: 0.6
vendor:	ibm	model:	power op920	scope:	eq	version:	9	Trust: 0.6
vendor:	ibm	model:	power op910	scope:	eq	version:	9	Trust: 0.6

sources: CNVD: CNVD-2020-19868 // JVNDB: JVNDB-2019-003090 // NVD: CVE-2018-1992

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2018-1992
value:	MEDIUM
Trust: 1.0
psirt@us.ibm.com:	CVE-2018-1992
value:	MEDIUM
Trust: 1.0
NVD:	CVE-2018-1992
value:	MEDIUM
Trust: 0.8
CNVD:	CNVD-2020-19868
value:	MEDIUM
Trust: 0.6
CNNVD:	CNNVD-201903-694
value:	MEDIUM
Trust: 0.6

nvd@nist.gov:	CVE-2018-1992
severity:	MEDIUM
baseScore:	6.9
vectorString:	AV:L/AC:M/AU:N/C:C/I:C/A:C
accessVector:	LOCAL
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	3.4
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
CNVD:	CNVD-2020-19868
severity:	MEDIUM
baseScore:	6.9
vectorString:	AV:L/AC:M/AU:N/C:C/I:C/A:C
accessVector:	LOCAL
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	3.4
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

nvd@nist.gov:	CVE-2018-1992
baseSeverity:	MEDIUM
baseScore:	6.4
vectorString:	CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
attackVector:	LOCAL
attackComplexity:	HIGH
privilegesRequired:	HIGH
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	0.5
impactScore:	5.9
version:	3.0
Trust: 2.8

sources: CNVD: CNVD-2020-19868 // JVNDB: JVNDB-2019-003090 // CNNVD: CNNVD-201903-694 // NVD: CVE-2018-1992 // NVD: CVE-2018-1992

PROBLEMTYPE DATA

problemtype:

CWE-119

Trust: 1.8

sources: JVNDB: JVNDB-2019-003090 // NVD: CVE-2018-1992

THREAT TYPE

local

Trust: 0.6

sources: CNNVD: CNNVD-201903-694

TYPE

buffer error

Trust: 0.6

sources: CNNVD: CNNVD-201903-694

CONFIGURATIONS

sources: JVNDB: JVNDB-2019-003090

PATCH

title:	0868992	url:	https://www-01.ibm.com/support/docview.wss?uid=ibm10868992	Trust: 0.8
title:	ibm-power9-cve20181992-code-exec (154345)	url:	https://exchange.xforce.ibmcloud.com/vulnerabilities/154345	Trust: 0.8
title:	Patch for Multiple IBM product buffer overflow vulnerabilities	url:	https://www.cnvd.org.cn/patchInfo/show/211339	Trust: 0.6
title:	Multiple IBM Product Buffer Error Vulnerability Fix	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=90247	Trust: 0.6

sources: CNVD: CNVD-2020-19868 // JVNDB: JVNDB-2019-003090 // CNNVD: CNNVD-201903-694

EXTERNAL IDS

db:	NVD	id:	CVE-2018-1992	Trust: 3.0
db:	JVNDB	id:	JVNDB-2019-003090	Trust: 0.8
db:	CNVD	id:	CNVD-2020-19868	Trust: 0.6
db:	AUSCERT	id:	ESB-2019.0939	Trust: 0.6
db:	CNNVD	id:	CNNVD-201903-694	Trust: 0.6

sources: CNVD: CNVD-2020-19868 // JVNDB: JVNDB-2019-003090 // CNNVD: CNNVD-201903-694 // NVD: CVE-2018-1992

REFERENCES

url:	https://www.ibm.com/support/docview.wss?uid=ibm10868992	Trust: 1.6
url:	https://exchange.xforce.ibmcloud.com/vulnerabilities/154345	Trust: 1.6
url:	https://nvd.nist.gov/vuln/detail/cve-2018-1992	Trust: 1.4
url:	https://www-01.ibm.com/support/docview.wss?uid=ibm10868992	Trust: 1.2
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2018-1992	Trust: 0.8
url:	http://www.ibm.com/support/docview.wss	Trust: 0.6
url:	https://www.auscert.org.au/bulletins/77590	Trust: 0.6
url:	https://vigilance.fr/vulnerability/ibm-power-9-buffer-overflow-via-boot-loader-28826	Trust: 0.6

sources: CNVD: CNVD-2020-19868 // JVNDB: JVNDB-2019-003090 // CNNVD: CNNVD-201903-694 // NVD: CVE-2018-1992

SOURCES

db:	CNVD	id:	CNVD-2020-19868
db:	JVNDB	id:	JVNDB-2019-003090
db:	CNNVD	id:	CNNVD-201903-694
db:	NVD	id:	CVE-2018-1992

LAST UPDATE DATE

2024-11-23T23:04:48.856000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2020-19868	date:	2020-03-28T00:00:00
db:	JVNDB	id:	JVNDB-2019-003090	date:	2019-05-09T00:00:00
db:	CNNVD	id:	CNNVD-201903-694	date:	2019-10-14T00:00:00
db:	NVD	id:	CVE-2018-1992	date:	2024-11-21T04:00:42.530

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2020-19868	date:	2020-03-28T00:00:00
db:	JVNDB	id:	JVNDB-2019-003090	date:	2019-05-09T00:00:00
db:	CNNVD	id:	CNNVD-201903-694	date:	2019-03-20T00:00:00
db:	NVD	id:	CVE-2018-1992	date:	2019-03-21T16:00:33.107