Lucene search
K

135 matches found

Positive Technologies
Positive Technologies
added 2024/01/09 12:0 a.m.5 views

PT-2024-1584 · Ami · Ami Megarac Sp-X

Name of the Vulnerable Software and Affected Versions: AMI MegaRAC SP-X affected versions not specified Description: The issue is related to a heap memory corruption vulnerability in the BMC of AMI MegaRAC SP-X. This vulnerability can be exploited by an attacker via an adjacent network, potential...

8.8CVSS8.8AI score0.00259EPSS
Exploits0References5
The Hacker News
The Hacker News
added 2023/07/20 4:56 p.m.84 views

Critical Flaws in AMI MegaRAC BMC Software Expose Servers to Remote Attacks

Two more security flaws have been disclosed in AMI MegaRAC Baseboard Management Controller BMC software that, if successfully exploited, could allow threat actors to remotely commandeer vulnerable servers and deploy malware. "These new vulnerabilities range in severity from High to Critical,...

9.8CVSS10.6AI score0.0171EPSS
Exploits0
OSV
OSV
added 2023/07/18 6:15 p.m.4 views

CVE-2023-34329

AMI MegaRAC SPx12 contains a vulnerability in BMC where a User may cause an authentication bypass by spoofing the HTTP header. A successful exploit of this vulnerability may lead to loss of confidentiality, integrity, and availability...

8CVSS5.8AI score0.00975EPSS
Exploits0References2
NVD
NVD
added 2023/07/18 6:15 p.m.20 views

CVE-2023-34329

AMI MegaRAC SPx12 contains a vulnerability in BMC where a User may cause an authentication bypass by spoofing the HTTP header. A successful exploit of this vulnerability may lead to loss of confidentiality, integrity, and availability...

9.1CVSS0.00975EPSS
Exploits0References2
CVE
CVE
added 2023/07/18 5:11 p.m.116 views

CVE-2023-34329

CVE-2023-34329 affects AMI MegaRAC SP-X BMC (SPx12). The vulnerability enables authentication bypass by spoofing the HTTP header, potentially compromising confidentiality, integrity and availability. Documented impact is that an attacker with appropriate access could bypass authentication to perf...

9.1CVSS8.1AI score0.00975EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/07/18 5:11 p.m.23 views

CVE-2023-34329 Authentication Bypass via HTTP Header Spoofing

AMI MegaRAC SPx12 contains a vulnerability in BMC where a User may cause an authentication bypass by spoofing the HTTP header. A successful exploit of this vulnerability may lead to loss of confidentiality, integrity, and availability...

9.1CVSS8.6AI score0.00975EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/07/18 12:0 a.m.6 views

AMI MegaRAC 安全漏洞

AMI MegaRAC is a family of service processor products from AMI. Complete out-of-band or unlit remote management of computer systems independent of operating system state or location is available to troubleshoot computers and ensure service continuity. A security vulnerability exists in AMI MegaRA...

9.1CVSS8.4AI score0.00975EPSS
Exploits0References3
CNNVD
CNNVD
added 2023/07/18 12:0 a.m.4 views

AMI MegaRAC 代码注入漏洞

AMI MegaRAC is a family of service processor products from AMI. Complete out-of-band or unlit remote management of computer systems independent of operating system state or location is available to troubleshoot computers and ensure service continuity. AMI MegaRAC suffers from a code injection...

8.8CVSS8.9AI score0.00514EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/07/18 12:0 a.m.9 views

PT-2023-24816

Name of the Vulnerable Software and Affected Versions AMI MegaRAC SPx12 affected versions not specified Description The issue allows a user to bypass authentication by spoofing the HTTP header, potentially leading to loss of confidentiality, integrity, and availability. This is achieved by...

9.1CVSS8.7AI score0.00975EPSS
Exploits0References11
Lenovo
Lenovo
added 2023/07/11 8:51 p.m.6 views

AMI MegaRAC SP-X BMC Vulnerabilities - Lenovo Support US

No description provided...

6.8AI score
Exploits0
CNNVD
CNNVD
added 2023/07/05 12:0 a.m.6 views

AMI MegaRAC 安全漏洞

AMI MegaRAC is a family of service processor products from AMI. Complete out-of-band or unlit remote management of computer systems independent of operating system state or location is available to troubleshoot computers and ensure service continuity. A security vulnerability exists in AMI MegaRA...

8.1CVSS7.8AI score0.00304EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/07/05 12:0 a.m.5 views

AMI MegaRAC 信任管理问题漏洞

AMI MegaRAC is a family of service processor products from AMI. Complete out-of-band or unlit remote management of computer systems independent of operating system state or location is available to troubleshoot computers and ensure service continuity. A security vulnerability exists in AMI MegaRA...

8.8CVSS8AI score0.00468EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/07/05 12:0 a.m.4 views

AMI MegaRAC 信任管理问题漏洞

AMI MegaRAC is a family of service processor products from AMI. Complete out-of-band or unlit remote management of computer systems independent of operating system state or location is available to troubleshoot computers and ensure service continuity. A security vulnerability exists in AMI MegaRA...

9.8CVSS8.4AI score0.0029EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/07/05 12:0 a.m.8 views

AMI MegaRAC 安全漏洞

AMI MegaRAC is a family of service processor products from AMI. Complete out-of-band or unlit remote management of computer systems independent of operating system state or location is available to troubleshoot computers and ensure service continuity. A security vulnerability exists in AMI MegaRA...

6.5CVSS6.6AI score0.00482EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/07/05 12:0 a.m.9 views

AMI MegaRAC 加密问题漏洞

AMI MegaRAC is a family of service processor products from AMI. Complete out-of-band or unlit remote management of computer systems independent of operating system state or location is available to troubleshoot computers and ensure service continuity. A security vulnerability exists in AMI MegaRA...

8.8CVSS8.1AI score0.00197EPSS
Exploits0References2
NVD
NVD
added 2023/04/22 3:15 a.m.30 views

CVE-2023-25505

NVIDIA DGX-1 BMC contains a vulnerability in the IPMI handler of the AMI MegaRAC BMC , where an attacker with the appropriate level of authorization can cause a buffer overflow, which may lead to denial of service, information disclosure, or arbitrary code execution...

7.8CVSS8AI score0.00213EPSS
Exploits0References1
OSV
OSV
added 2023/04/22 3:15 a.m.5 views

CVE-2023-25505

NVIDIA DGX-1 BMC contains a vulnerability in the IPMI handler of the AMI MegaRAC BMC , where an attacker with the appropriate level of authorization can cause a buffer overflow, which may lead to denial of service, information disclosure, or arbitrary code execution...

7.8CVSS7.5AI score0.00213EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/04/22 2:29 a.m.33 views

CVE-2023-25505

NVIDIA DGX-1 BMC contains a vulnerability in the IPMI handler of the AMI MegaRAC BMC , where an attacker with the appropriate level of authorization can cause a buffer overflow, which may lead to denial of service, information disclosure, or arbitrary code execution...

7.8CVSS8.5AI score0.00213EPSS
Exploits0References1
CVE
CVE
added 2023/04/22 2:29 a.m.67 views

CVE-2023-25505

CVE-2023-25505 affects NVIDIA DGX-1 BMC, specifically the IPMI handler in the AMI MegaRAC BMC. The issue is a buffer overflow that an attacker with the appropriate authorization level can trigger, potentially causing denial of service, information disclosure, or arbitrary code execution. NVIDIA's...

7.8CVSS8.2AI score0.00213EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/04/22 12:0 a.m.5 views

PT-2023-20118 · Ami +1 · Ami Megarac Bmc +1

Name of the Vulnerable Software and Affected Versions: NVIDIA DGX-1 BMC affected versions not specified Description: The issue is related to a buffer overflow in the IPMI handler of the AMI MegaRAC BMC. An attacker with the appropriate level of authorization can cause this buffer overflow,...

7.8CVSS7.8AI score0.00213EPSS
Exploits0References5
Rows per page
Query Builder