Can anyone help me how to validate redfish Vulnerability (CVE-2024-54085) , as per document i have tried
with its own IP as header , then OS IP as header but unable to access redfish without credentials.
curl -k -H ‘X-Server-Addr: 10.1.2.14:’ (https)://10.1.2.14/redfish/v1/Systems/
is there any other method to cross check whether BMC is vulnrable or not?
This looks like it’s from the Enterprise feed and if you are a current customer please go ahead and open a ticket via the support portal (accessible via the linked page), thanks!
