Medium severity5.0NVD Advisory· Published Oct 9, 2024· Updated Apr 15, 2026
CVE-2024-42934
CVE-2024-42934
Description
OpenIPMI before 2.0.36 has an out-of-bounds array access (for authentication type) in the ipmi_sim simulator, resulting in denial of service or (with very low probability) authentication bypass or code execution.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
13- osv-coords12 versionspkg:rpm/almalinux/OpenIPMIpkg:rpm/almalinux/OpenIPMI-develpkg:rpm/almalinux/OpenIPMI-lanservpkg:rpm/almalinux/OpenIPMI-libspkg:rpm/opensuse/OpenIPMI&distro=openSUSE%20Leap%2015.5pkg:rpm/opensuse/OpenIPMI&distro=openSUSE%20Leap%2015.6pkg:rpm/opensuse/OpenIPMI&distro=openSUSE%20Tumbleweedpkg:rpm/suse/OpenIPMI&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP5pkg:rpm/suse/OpenIPMI&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP6pkg:rpm/suse/OpenIPMI&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5pkg:rpm/suse/OpenIPMI&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5pkg:rpm/suse/OpenIPMI&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5
< 2.0.32-5.el9_4+ 11 more
- (no CPE)range: < 2.0.32-5.el9_4
- (no CPE)range: < 2.0.32-5.el9_4
- (no CPE)range: < 2.0.32-5.el9_4
- (no CPE)range: < 2.0.32-5.el9_4
- (no CPE)range: < 2.0.31-150400.3.5.1
- (no CPE)range: < 2.0.31-150600.10.3.1
- (no CPE)range: < 2.0.36.4+git.c114912-1.1
- (no CPE)range: < 2.0.31-150400.3.5.1
- (no CPE)range: < 2.0.31-150600.10.3.1
- (no CPE)range: < 2.0.21-10.9.1
- (no CPE)range: < 2.0.21-10.9.1
- (no CPE)range: < 2.0.21-10.9.1
Patches
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
3News mentions
0No linked articles in our index yet.