CVE-2023-31029

NVIDIA DGX A100 baseboard management controller BMC contains a vulnerability in the host KVM daemon, where an unauthenticated attacker may cause a stack overflow by sending a specially crafted network packet. A successful exploit of this vulnerability may lead to arbitrary code execution, denial ...

CVE-2023-37297

AMI’s SPx contains a vulnerability in the BMC where an Attacker may cause a heap memory corruption via an adjacent network. A successful exploitation of this vulnerability may lead to a loss of confidentiality, integrity, and/or availability...

CVE-2023-3043

AMI’s SPx contains a vulnerability in the BMC where an Attacker may cause a stack-based buffer overflow via an adjacent network. A successful exploitation of this vulnerability may lead to a loss of confidentiality, integrity, and/or availability...

CVE-2023-37294

AMI’s SPx contains a vulnerability in the BMC where an Attacker may cause a heap memory corruption via an adjacent network. A successful exploitation of this vulnerability may lead to a loss of confidentiality, integrity, and/or availability...

PT-2024-12474 · Ami · Ami'S Spx

Name of the Vulnerable Software and Affected Versions: AMI's SPx affected versions not specified Description: The issue is related to a vulnerability in the BMC of AMI's SPx, where an attacker may cause an untrusted pointer to dereference by a local network. A successful exploitation of this issu...

CVE-2023-33413

The configuration functionality in the Intelligent Platform Management Interface IPMI baseboard management controller BMC implementation on Supermicro X11 and M11 based devices, with firmware versions through 3.17.02, allows remote authenticated users to execute arbitrary commands...

CVE-2023-33412

The web interface in the Intelligent Platform Management Interface IPMI baseboard management controller BMC implementation on Supermicro X11 and M11 based devices, with firmware versions before 3.17.02, allows remote authenticated users to execute arbitrary commands via a crafted request targetin...

Intel One Boot Flash Utility Security Vulnerability

The Intel One Boot Flash Utility is an Intel Corporation program for updating a system's BIOS, BMC, Sensor Data Recording SDR, Field-Replaceable Unit FRU, and Intel® Management Engine Intel® ME. Programs for the Intel® Management Engine Intel® ME. A security vulnerability exists in the Intel One...

The vulnerability in the web interface of Supermicro X11 series BMC IPMI servers involves insufficient protection of the website structure, allowing attackers to carry out cross-site scripting attacks.

The vulnerability in the web interface of BMC IPMI Supermicro X11 series servers exists due to the lack of measures taken to protect the web page structure. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks using specially crafted GET requests...

The vulnerability in the web interface of Supermicro X11 series BMC IPMI servers is related to insufficient validation of arguments passed in commands, allowing attackers to execute arbitrary code.

The vulnerability of the web interface of the BMC IPMI server from Supermicro’s X11 series is related to insufficient checking of arguments passed in commands. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

The vulnerability in the web interface of Supermicro X112 series BMC IPMI servers relates to the lack of protective measures for the website structure, allowing attackers to carry out cross-site scripting attacks.

The vulnerability in the web interface of BMC IPMI Supermicro X11 series servers exists due to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks using specially crafted GET requests...

The vulnerability in the web interface of BMC IPMI Supermicro X11 servers relates to the lack of protective measures for the website structure, allowing attackers to execute arbitrary code.

The vulnerability of the web interface of BMC IPMI Supermicro X11 series servers exists due to the lack of protective measures for the web page structure. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability in the web interface of BMC IPMI Supermicro X11 servers exists due to the lack of protective measures for the web page structure. This allows attackers to execute XSS attacks.

The vulnerability in the web interface of BMC IPMI Supermicro X11 series servers exists due to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks using specially crafted GET requests...

The vulnerability of the Host KVM Daemon of the BMC – the Baseboard Management Controller – in NVIDIA DGX H100 BMC allows a hacker to execute arbitrary code, cause system failures, or gain increased privileges.

The vulnerability of the NVIDIA DGX H100 BMC’s KVM daemon controller for equipment management involves an escape from the buffer boundaries into memory. Exploiting this vulnerability allows a attacker to execute arbitrary code, cause system failures, or gain increased privileges...

CVE-2023-31015

NVIDIA DGX H100 BMC contains a vulnerability in the REST service where a host user may cause as improper authentication issue. A successful exploit of this vulnerability may lead to escalation of privileges, information disclosure, code execution, and denial of service...

CVE-2023-31011

NVIDIA DGX H100 BMC contains a vulnerability in the REST service where an attacker may cause improper input validation. A successful exploit of this vulnerability may lead to escalation of privileges and information disclosure...

NVIDIA DGX Input Validation Error Vulnerability

NVIDIA DGX is a high-performance workstation for deep learning applications from NVIDIA. A security vulnerability exists in the NVIDIA DGX H100 BMC that stems from incorrect input validation...

NVIDIA DGX License Issue Vulnerability

NVIDIA DGX is a high-performance workstation for deep learning applications from NVIDIA. A security vulnerability exists in the NVIDIA DGX H100 BMC that stems from an incorrect authentication issue...

NVIDIA DGX Input Validation Error Vulnerability

NVIDIA DGX is a high-performance workstation for deep learning applications from NVIDIA. A security vulnerability exists in the NVIDIA DGX H100 BMC that stems from incorrect input validation...

NVIDIA DGX Input Validation Error Vulnerability

NVIDIA DGX is a high-performance workstation for deep learning applications from NVIDIA. A security vulnerability exists in the NVIDIA DGX H100 BMC that stems from incorrect input validation...