Unrated severityNVD Advisory· Published Jul 14, 2014· Updated May 6, 2026
CVE-2014-2955
CVE-2014-2955
Description
Raritan PX before 1.5.11 on DPXR20A-16 devices allows remote attackers to bypass authentication and execute arbitrary IPMI commands by using cipher suite 0 (aka cipher zero) and an arbitrary password.
Affected products
16cpe:2.3:o:raritan:px:*:*:*:*:*:*:*:*+ 14 more
- cpe:2.3:o:raritan:px:*:*:*:*:*:*:*:*range: <=1.5.8
- cpe:2.3:o:raritan:px:1.0:*:*:*:*:*:*:*
- cpe:2.3:o:raritan:px:1.0.4:*:*:*:*:*:*:*
- cpe:2.3:o:raritan:px:1.1:*:*:*:*:*:*:*
- cpe:2.3:o:raritan:px:1.1.6:*:*:*:*:*:*:*
- cpe:2.3:o:raritan:px:1.2:*:*:*:*:*:*:*
- cpe:2.3:o:raritan:px:1.2.5:*:*:*:*:*:*:*
- cpe:2.3:o:raritan:px:1.2.7:*:*:*:*:*:*:*
- cpe:2.3:o:raritan:px:1.3:*:*:*:*:*:*:*
- cpe:2.3:o:raritan:px:1.3.1:*:*:*:*:*:*:*
- cpe:2.3:o:raritan:px:1.3.5:*:*:*:*:*:*:*
- cpe:2.3:o:raritan:px:1.4.1:*:*:*:*:*:*:*
- cpe:2.3:o:raritan:px:1.5:*:*:*:*:*:*:*
- cpe:2.3:o:raritan:px:1.5.4:*:*:*:*:*:*:*
- cpe:2.3:o:raritan:px:1.5.7:*:*:*:*:*:*:*
- cpe:2.3:h:raritan:dpxr20a-16:-:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2- www.kb.cert.org/vuls/id/712660nvdThird Party AdvisoryUS Government Resource
- seclists.org/fulldisclosure/2014/Jul/14nvd
News mentions
0No linked articles in our index yet.