{"id":"AZL-50318","summary":"CVE-2024-42934 affecting package OpenIPMI for versions less than 2.0.36-1","details":"OpenIPMI before 2.0.36 has an out-of-bounds array access (for authentication type) in the ipmi_sim simulator, resulting in denial of service or (with very low probability) authentication bypass or code execution.","modified":"2026-04-21T04:30:10.924744Z","published":"2024-10-09T05:15:13Z","upstream":["CVE-2024-42934"],"references":[{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-42934"}],"affected":[{"package":{"name":"OpenIPMI","ecosystem":"Azure Linux:3","purl":"pkg:rpm/azure-linux/OpenIPMI"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.0.36-1"}]}],"database_specific":{"source":"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-50318.json"}}],"schema_version":"1.7.5"}