497 matches found
CVE-2022-42288
NVIDIA BMC contains a vulnerability in IPMI handler, where an unauthorized attacker can use certain oracles to guess a valid BMC username, which may lead to an information disclosure...
CVE-2022-42282
NVIDIA BMC contains a vulnerability in SPX REST API, where an authorized attacker can access arbitrary files, which may lead to information disclosure...
CVE-2022-42274
NVIDIA BMC contains a vulnerability in IPMI handler, where an authorized attacker can cause a buffer overflow and cause a denial of service or gain code execution...
NVIDIA BMC 操作系统命令注入漏洞
NVIDIA BMC is an OpenBMC open software framework from NVIDIA. A security vulnerability exists in NVIDIA BMC. An attacker exploiting this vulnerability could inject arbitrary shell commands, which could lead to code execution, denial of service, information disclosure, and data tampering...
NVIDIA BMC 安全漏洞
NVIDIA BMC is an OpenBMC open software framework from NVIDIA. A security vulnerability exists in NVIDIA BMC. An attacker exploiting this vulnerability could guess a valid BMC username, which could lead to information disclosure...
NVIDIA BMC 操作系统命令注入漏洞
NVIDIA BMC is an OpenBMC open software framework from NVIDIA. NVIDIA BMC has a security vulnerability that stems from its SPX REST API that allows an authorized attacker to inject arbitrary shell commands resulting in code execution, denial of service, information disclosure, and data tampering...
NVIDIA BMC 操作系统命令注入漏洞
NVIDIA BMC is an OpenBMC open software framework from NVIDIA. A security vulnerability exists in NVIDIA BMC. An attacker exploiting this vulnerability could inject arbitrary shell commands, which could lead to code execution, denial of service, information disclosure, and data tampering...
NVIDIA BMC 安全漏洞
NVIDIA BMC is an OpenBMC open software framework from NVIDIA. A security vulnerability exists in NVIDIA BMC. An attacker exploiting this vulnerability could access arbitrary files, which could lead to information leakage...
NVIDIA BMC 安全漏洞
NVIDIA BMC is an OpenBMC open software framework from NVIDIA. NVIDIA BMC suffers from a security vulnerability that originates from storing user passwords in a fuzzy form in a host-accessible database, resulting in exposed credentials...
NVIDIA BMC 安全漏洞
NVIDIA BMC is an OpenBMC open software framework from NVIDIA. A security vulnerability exists in NVIDIA BMC. An attacker could exploit this vulnerability to cause a buffer overflow and result in a denial of service or gain code execution...
CVE-2022-42272
NVIDIA BMC contains a vulnerability in IPMI handler, where an authorized attacker can cause a buffer overflow, which may lead to code execution, denial of service or escalation of privileges...
PT-2023-14074 · Nvidia · Nvidia Bmc
Name of the Vulnerable Software and Affected Versions: NVIDIA BMC affected versions not specified Description: The issue is related to a buffer overflow in libwebsocket, which can be exploited by an authorized attacker to cause a denial of service or potentially gain code execution...
The vulnerability of the microprogramming software of the AMI MegaRAC Baseboard Management Controller (BMC) allows a intruder to gain full access to the device.
The vulnerability of the microprogramming software of the AMI MegaRAC Baseboard Management Controller BMC relates to the use of rigidly encrypted credentials. Exploiting this vulnerability allows a malicious actor, operating remotely, to gain full access to the device via SSH...
PT-2022-5909 · Ami · Ami Megarac Baseboard Management Controller
Name of the Vulnerable Software and Affected Versions: AMI MegaRAC Baseboard Management Controller BMC affected versions not specified Description: The issue is related to the use of hardcoded credentials in the AMI MegaRAC Baseboard Management Controller BMC firmware. An attacker can exploit thi...
CVE-2021-26733
A broken access control vulnerability in the FirstResethandlerfunc function of spxrestservice allows an attacker to arbitrarily send reboot commands to the BMC, causing a Denial-of-Service DoS condition. This issue affects: Lanner Inc IAC-AST2500A standard firmware version 1.10.0...
Lanner IAC-AST2500A 安全漏洞
The Lanner IAC-AST2500A is a module and accelerator card from Lanner. It is suitable for Lanner network devices to support remote management and monitoring of system operation based on the IPMI standard. A security vulnerability exists in the Lanner IAC-AST2500A standard firmware version 1.00.0,...
Lanner IAC-AST2500A 安全漏洞
The Lanner IAC-AST2500A is a module and accelerator card from Lanner. It is suitable for Lanner network devices to support remote management and monitoring of system operation based on the IPMI standard. A security vulnerability exists in the Lanner IAC-AST2500A standard firmware version 1.00.0,...
UBUNTU-CVE-2022-3287
When creating an OPERATOR user account on the BMC, the redfish plugin saved the auto-generated password to /etc/fwupd/redfish.conf without proper restriction, allowing any user on the system to read the same configuration file...
CVE-2022-22374
The BMC IBM Power 9 AC922 OP910, OP920, OP930, and OP940 may be subject to a firmware downgrade attack which may affect its ability to operate its host. IBM X-Force ID: 221442...
IBM Power System安全漏洞
The IBM Power System is a Power processor-based server computer from IBM in the United States. A security vulnerability exists in the IBM Power System 9 AC922 OP910, OP920, OP930, OP940, which stems from a downgrade attack on the BMC IBM Power 9 AC922 OP910, OP920, OP930, OP940, which affects its...