High severity8.8NVD Advisory· Published Jun 15, 2020· Updated Jun 17, 2026
CVE-2020-14156
CVE-2020-14156
Description
user_channel/passwd_mgr.cpp in OpenBMC phosphor-host-ipmid before 2020-04-03 does not ensure that /etc/ipmi-pass has strong file permissions.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- OpenBMC/phosphor-host-ipmiddescription
Patches
Vulnerability mechanics
References
3- github.com/openbmc/phosphor-host-ipmid/commit/b265455a2518ece7c004b43c144199ec980fc620nvdPatchThird Party Advisory
- github.com/openbmc/openbmc/issues/3670nvdThird Party Advisory
- lists.ozlabs.org/pipermail/openbmc/2020-June/022020.htmlnvdMailing ListThird Party Advisory
News mentions
0No linked articles in our index yet.