CVE-2026-50031 – FreeIPMI ipmi-oem Buffer Overflow

CVE ID :CVE-2026-50031

Published : June 3, 2026, 4:17 a.m. | 15 minutes ago

Description :ipmi-oem in FreeIPMI before 1.16.18 has exploitable buffer overflows on response messages. The Intelligent Platform Management Interface (IPMI) specification defines a set of interfaces for platform management. It is implemented by a large number of hardware manufacturers to support system management. It is most commonly used for sensor reading (e.g., CPU temperatures through the ipmi-sensors command within FreeIPMI) and remote power control (the ipmipower command). The ipmi-oem client command implements a set of a IPMI OEM commands for specific hardware vendors. If a user has supported hardware, they may wish to use the ipmi-oem command to send a request to a server to retrieve specific information. Two subcommands “ipmi-oem dell get-active-directory-config” and “ipmi-oem fujitsu get-sel-entry-long-text” were found to have exploitable buffer overflows on response messages.

Severity: 7.5 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more… 

نوشته های مشابه

CVE-2026-50052 – Varnish Cache HTTP/2 Request Smuggling

CVE-2026-10705 – dask HLL hyperloglog.py nunique_approx resource consumption

CVE-2026-10704 – SourceCodester Pizzafy E-Commerce System Administrative Control Panel admin_class_novo.php login sql injection

CVE-2026-10703 – EIPStackGroup OpENer SendRRData cipmessagerouter.c CreateMessageRouterRequestStructure use after free