Skip to the content.

DIVD-2022-00055 - Server Management Interfaces security issues

Our reference DIVD-2022-00055
Case lead Pepijn van der Stap
Researcher(s)
CVE(s)
  • n/a
Product n/a
Versions any. For hardware it depends on the firmware shipped by the hardware vendor
Recommendation If you received a notification of a vulnerability, patch your system with the information provided in the notification.
Patch status n/a
Status Open
Last modified 08 Dec 2022 16:28

Summary

DIVD started looking for vulnerabilities regarding (hardware) server management interfaces, worldwide. These interfaces are often exposed to the internet and are not protected by default. This makes them a target for attackers. DIVD is researching vulnerabilities in (hardware) server management interfaces globally and notifying the owners of misconfigured services.

What you can do

IT and IT security teams should consider putting the instance on a separate network, and only allow access to it from a trusted network, via a stepping stone/bastion server, or via VPN. This will prevent attackers from accessing the management interface from the internet.

What we are doing

Timeline

Date Description
08 Oct 2022 DIVD starts investigating the scope of management interfaces.
gantt title DIVD-2022-00055 - Server Management Interfaces security issues dateFormat YYYY-MM-DD axisFormat %e %b %Y section Case DIVD-2022-00055 - Server Management Interfaces security issues (still open) :2022-10-08, 2022-12-15 section Events DIVD starts investigating the scope of management interfaces. : milestone, 2022-10-08, 0d

More information