TLS Certificate Generation Function Improper Input Validation

Vulnerability

An improper input validation vulnerability exists in the TLS certificate generation function of Lanner IAC-AST2500A BMC firmware version 1.10.0. This issue allows an authenticated remote attacker to trigger a Denial-of-Service (DoS) condition that can only be reverted via a factory reset [1][2].

Exploitation

An attacker with network access and valid authentication credentials can exploit this vulnerability by sending a crafted request to the TLS certificate generation function. The improper input validation causes the BMC to enter an unrecoverable state, requiring physical access to perform a factory reset [2].

Impact

Successful exploitation results in a complete denial of service of the BMC, making it inaccessible to users. The device cannot be recovered without a factory reset, which erases all configuration and data. The CVSS score is 4.9 (AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H) [2].

Mitigation

Lanner has released updated firmware versions that fix the issue, available from Lanner technical support. Asset owners should apply the update as soon as possible. No workarounds are documented. The vulnerability is not listed in the CISA Known Exploited Vulnerabilities (KEV) catalog [2].