CVE-2020-11486

NVIDIA DGX servers, all DGX-1 with BMC firmware versions prior to 3.38.30, contain a vulnerability in the AMI BMC firmware in which software allows an attacker to upload or transfer files that can be automatically processed within the product's environment, which may lead to remote code execution...

CVE-2020-8340

CVE-2020-8340 is an XSS vulnerability in legacy IBM/Lenovo System x IMM2 (BMC web interface) prior to firmware 5.60. Exploitation requires convincing the user to visit a crafted URL while the user is authenticated; the injected JavaScript executes in the user’s browser, not on IMM2. Documented im...

Critical Intel Flaw Afflicts Several Motherboards, Server Systems, Compute Modules

Intel is warning of a rare critical-severity vulnerability affecting several of its motherboards, server systems and compute modules. The flaw could allow an unauthenticated, remote attacker to achieve escalated privileges. The recently patched flaw CVE-2020-8708 ranks 9.6 out of 10 on the CVSS...

CVE-2020-8573

NetApp HCI BMCs (H610C, H615C, H610S) ship with a documented default account/password. During upgrades to Element 11.8/12.0 or Compute Firmware Bundle 12.2.92, the BMC password is reset to the default, which could allow remote attackers to cause a Denial of Service (DoS). This cobalt of informati...

NetApp Service Processor and NetApp Baseboard Management Controller Denial of Service Vulnerabilities

NetApp Service Processor and NetApp Baseboard Management Controller are both products of NetApp, Inc.NetApp Service Processor is a remote management device. The product provides node remote management capabilities, including console redirection, logging, and power control.NetApp Baseboard...

CVE-2019-5500

CVE-2019-5500 concerns NetApp’s Service Processor (SV) and Baseboard Management Controller (BMC) firmware. Connected documents confirm a remote, unauthenticated attacker can cause a Denial of Service (DoS) on affected devices. The impact is described as DoS, with CVSS metrics indicating a Network...

CVE-2019-17274

NetApp FAS 8300/8700 and AFF A400 Baseboard Management Controller BMC firmware versions 13.x prior to 13.1P1 were shipped with a default account enabled that could allow unauthorized arbitrary command execution via local access...

CVE-2019-17274

NetApp FAS 8300/8700 and AFF A400 Baseboard Management Controller BMC firmware versions 13.x prior to 13.1P1 were shipped with a default account enabled that could allow unauthorized arbitrary command execution via local access...

The vulnerability of microprogrammed software in the Intel Baseboard Management Controller (BMC) involves reading data beyond the buffer in memory, allowing an attacker to exploit their privileges.

The vulnerability of microprogrammed software in the Intel Baseboard Management Controller BMC relates to reading data beyond the buffer in memory. Exploiting this vulnerability can allow a remote attacker to gain increased privileges...

The vulnerability of microprogrammed software in the Intel Baseboard Management Controller (BMC) lies in insufficient validation of input data, allowing a intruder to trigger a service failure.

The vulnerability of microprogrammed software in the Intel Baseboard Management Controller BMC relates to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

The vulnerability of the microprogramming software of the Intel Baseboard Management Controller (BMC) allows a intruder to trigger a service failure or gain unauthorized access to protected information.

The vulnerability of the microprogramming software of the Intel Baseboard Management Controller BMC is related to buffer overflow vulnerabilities. Exploiting this vulnerability can allow an attacker to cause service failures or gain unauthorized access to protected information...

The vulnerability of microprogrammed software in the Intel Baseboard Management Controller (BMC) allows a intruder to escalate their privileges, cause system failures, or gain unauthorized access to protected information.

The vulnerability of the microprogramming software of the Intel Baseboard Management Controller BMC is related to deficiencies in authentication procedures. Exploiting this vulnerability can allow attackers to enhance their privileges, cause service failures, or gain unauthorized access to...

The vulnerability of microprogrammed software in the Intel Baseboard Management Controller (BMC) allows a intruder to trigger a service failure.

The vulnerability of the microprogrammed software of the Intel Baseboard Management Controller BMC relates to insufficient handling of exceptional states. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

The vulnerability of the microprogramming software of the Intel Baseboard Management Controller (BMC) relates to reading data beyond the buffer in memory, allowing an intruder to disclose protected information.

The vulnerability of the microprogramming software of the Intel Baseboard Management Controller BMC relates to reading data beyond the buffer in memory. Exploiting this vulnerability can allow a malicious actor to disclose protected information...

Intel Baseboard Management Controller Denial of Service Vulnerability

The Intel Baseboard Management Controller BMC is a baseboard management controller from Intel Corporation USA. A denial of service vulnerability exists in Intel BMC, which can be exploited by an attacker to cause a denial of service...

Intel Baseboard Management Controller Memory Corruption Vulnerability

The Intel Baseboard Management Controller BMC is a baseboard management controller from Intel Corporation USA. A memory corruption vulnerability exists in Intel BMC, which can be exploited by an attacker to cause a denial of service...

Intel Baseboard Management Controller Buffer Overflow Vulnerability

The Intel Baseboard Management Controller BMC is a baseboard management controller from Intel Corporation USA. A buffer overflow vulnerability exists in Intel BMC, which originates when a networked system or product performs an operation in memory without properly validating the data boundaries,...

Intel Baseboard Management Controller Input Validation Error Vulnerability (CNVD-2020-12690)

The Intel Baseboard Management Controller BMC is a baseboard management controller from Intel Corporation USA. An input validation error vulnerability exists in Intel BMC, which can be exploited by an attacker to obtain sensitive information...

Intel Baseboard Management Controller Buffer Overflow Vulnerability (CNVD-2020-12697)

The Intel Baseboard Management Controller BMC is a baseboard management controller from Intel Corporation USA. A buffer overflow vulnerability exists in Intel BMC, which originates when a networked system or product performs an operation in memory without properly validating the data boundaries,...

Intel Baseboard Management Controller Buffer Overflow Vulnerability (CNVD-2020-12691)

The Intel Baseboard Management Controller BMC is a baseboard management controller from Intel Corporation USA. A buffer overflow vulnerability exists in Intel BMC, which can be exploited by an attacker to disclose information and/or cause a denial of service...