CVE-2014-4749
IBM PowerVC 1.2.0 before FixPack3 does not properly use the known_hosts file, which allows man-in-the-middle attackers to spoof SSH servers via an arbitrary server key.
Ver en NVDSeveridad
N/A
EPSS
Probabilidad de explotación (próx. 30 días): 0.0024 (0.2%)
Percentil: 46.4%
EPSS: 2026-05-06
Afecta
ibm:powervcDescripción técnica
IBM PowerVC 1.2.0 before FixPack3 does not properly use the known_hosts file, which allows man-in-the-middle attackers to spoof SSH servers via an arbitrary server key.
Publicada: 20/8/2014, 11:17:14
Última modificación: 6/5/2026, 22:30:45