I'm not aware of any plans to address those vulnerabilities. A feature of the iDRAC is IPMI. Those are IPMI vulnerabilities. IPMI is not something we designed, it is an industry standard specification. If a newer version of IPMI that is more secure is released we will likely use it.
If you are not using IPMI over LAN then you should be able to disable that feature on the iDRAC. That will stop the use of IPMI over the network. IPMI can still be used from within the host operating system with that option disabled. That should stop it from being flagged as a network vulnerability.
Daniel My
10 Elder
•
6.2K Posts
0
June 14th, 2017 12:00
Hello
I'm not aware of any plans to address those vulnerabilities. A feature of the iDRAC is IPMI. Those are IPMI vulnerabilities. IPMI is not something we designed, it is an industry standard specification. If a newer version of IPMI that is more secure is released we will likely use it.
If you are not using IPMI over LAN then you should be able to disable that feature on the iDRAC. That will stop the use of IPMI over the network. IPMI can still be used from within the host operating system with that option disabled. That should stop it from being flagged as a network vulnerability.
Thanks
martinonley
2 Posts
0
June 15th, 2017 03:00
Hi,
Many thanks for your reply
Martin