Lucene search
K

210 matches found

Vulnrichment
Vulnrichment
added 2024/09/06 9:7 a.m.19 views

CVE-2023-52916 media: aspeed: Fix memory overwrite if timing is 1600x900

In the Linux kernel, the following vulnerability has been resolved: media: aspeed: Fix memory overwrite if timing is 1600x900 When capturing 1600x900, system could crash when system memory usage is tight. The way to reproduce this issue: 1. Use 1600x900 to display on host 2. Mount ISO through...

6.8AI score0.00218EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/09/06 9:7 a.m.34 views

CVE-2023-52916 media: aspeed: Fix memory overwrite if timing is 1600x900

In the Linux kernel, the following vulnerability has been resolved: media: aspeed: Fix memory overwrite if timing is 1600x900 When capturing 1600x900, system could crash when system memory usage is tight. The way to reproduce this issue: 1. Use 1600x900 to display on host 2. Mount ISO through...

0.00218EPSS
Exploits0References2
CNVD
CNVD
added 2024/08/21 12:0 a.m.6 views

IBM OpenBMC Elevation of Privilege Vulnerability

IBM OpenBMC is a Linux distribution from International Business Machines IBM used to manage controllers for devices such as servers, top-of-rack switches, or RAID devices. An elevation of privilege vulnerability exists in IBM OpenBMC, which can be exploited by an attacker to gain administrative...

7.5CVSS7AI score0.00482EPSS
Exploits0References1
NVD
NVD
added 2024/08/14 2:15 p.m.21 views

CVE-2023-49144

Out of bounds read in OpenBMC Firmware for some IntelR Server Platforms before versions egs-1.15-0, bhs-0.27 may allow a privileged user to potentially enable information disclosure via local access...

8.1CVSS0.00192EPSS
Exploits0References1
NVD
NVD
added 2024/08/14 2:15 p.m.8 views

CVE-2023-35123

Uncaught exception in OpenBMC Firmware for some IntelR Server Platforms before versions egs-1.14-0, bhs-0.27 may allow an authenticated user to potentially enable denial of service via network access...

5.9CVSS0.00443EPSS
Exploits0References1
CVE
CVE
added 2024/08/14 1:45 p.m.38 views

CVE-2023-49144

CVE-2023-49144 is an Out-of-bounds read in OpenBMC Firmware affecting certain Intel Server Platforms. The issue exists in OpenBMC Firmware prior to egs-1.15-0 and prior to bhs-0.27, potentially allowing a privileged user with local access to disclose information. Public sources (Intel advisory an...

8.1CVSS6.2AI score0.00192EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/08/14 1:45 p.m.18 views

CVE-2023-49144

Out of bounds read in OpenBMC Firmware for some IntelR Server Platforms before versions egs-1.15-0, bhs-0.27 may allow a privileged user to potentially enable information disclosure via local access...

8.1CVSS0.00192EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/08/14 1:45 p.m.14 views

CVE-2023-35123

Uncaught exception in OpenBMC Firmware for some IntelR Server Platforms before versions egs-1.14-0, bhs-0.27 may allow an authenticated user to potentially enable denial of service via network access...

5.9CVSS0.00443EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/08/14 1:45 p.m.13 views

CVE-2023-35123

Uncaught exception in OpenBMC Firmware for some IntelR Server Platforms before versions egs-1.14-0, bhs-0.27 may allow an authenticated user to potentially enable denial of service via network access...

5.9CVSS6.7AI score0.00443EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/08/14 1:45 p.m.8 views

CVE-2023-49144

Out of bounds read in OpenBMC Firmware for some IntelR Server Platforms before versions egs-1.15-0, bhs-0.27 may allow a privileged user to potentially enable information disclosure via local access...

8.1CVSS6.1AI score0.00192EPSS
Exploits0References1
CVE
CVE
added 2024/08/14 1:45 p.m.39 views

CVE-2023-35123

OpenBMC firmware vulnerability CVE-2023-35123 affects Intel® Server Platform OpenBMC Firmware prior to egs-1.14-0 and bhs-0.27. The issue is an uncaught exception in OpenBMC firmware that may allow an authenticated user to cause a denial of service via network access. Impact is reported as availa...

5.9CVSS6.7AI score0.00443EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/08/14 12:0 a.m.4 views

PT-2024-12501 · Unknown · Openbmc Firmware

Name of the Vulnerable Software and Affected Versions: OpenBMC Firmware versions prior to egs-1.14-0 OpenBMC Firmware versions prior to bhs-0.27 Description: The issue is related to an uncaught exception in OpenBMC Firmware for some IntelR Server Platforms, which may allow an authenticated user t...

5.9CVSS7AI score0.00443EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/08/14 12:0 a.m.4 views

PT-2024-13684 · Unknown · Openbmc Firmware

Name of the Vulnerable Software and Affected Versions: OpenBMC Firmware versions prior to egs-1.15-0 OpenBMC Firmware versions prior to bhs-0.27 Description: The issue is an out of bounds read that may allow a privileged user to potentially enable information disclosure via local access...

8.1CVSS6.4AI score0.00192EPSS
Exploits0References3
OSV
OSV
added 2024/08/13 12:15 p.m.2 views

CVE-2024-35124

A vulnerability in the combination of the OpenBMC's FW1050.00 through FW1050.10, FW1030.00 through FW1030.50, and FW1020.00 through FW1020.60 default password and session management allow an attacker to gain administrative access to the BMC. IBM X-Force ID: 290674...

7.5CVSS5.8AI score
Exploits0References2
NVD
NVD
added 2024/08/13 12:15 p.m.22 views

CVE-2024-35124

A vulnerability in the combination of the OpenBMC's FW1050.00 through FW1050.10, FW1030.00 through FW1030.50, and FW1020.00 through FW1020.60 default password and session management allow an attacker to gain administrative access to the BMC. IBM X-Force ID: 290674...

7.5CVSS0.00482EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/08/13 11:14 a.m.17 views

CVE-2024-35124 IBM OpenBMC authentication bypass

A vulnerability in the combination of the OpenBMC's FW1050.00 through FW1050.10, FW1030.00 through FW1030.50, and FW1020.00 through FW1020.60 default password and session management allow an attacker to gain administrative access to the BMC. IBM X-Force ID: 290674...

7.5CVSS7AI score0.00482EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/08/13 11:14 a.m.24 views

CVE-2024-35124 IBM OpenBMC authentication bypass

A vulnerability in the combination of the OpenBMC's FW1050.00 through FW1050.10, FW1030.00 through FW1030.50, and FW1020.00 through FW1020.60 default password and session management allow an attacker to gain administrative access to the BMC. IBM X-Force ID: 290674...

7.5CVSS0.00482EPSS
Exploits0References2
CVE
CVE
added 2024/08/13 11:14 a.m.61 views

CVE-2024-35124

CVE-2024-35124 affects OpenBMC firmware FW1020.00–FW1020.60, FW1030.00–FW1030.50, and FW1050.00–FW1050.10. The root cause is default password/session management during initial installation, enabling a network attacker to gain administrative access to the BMC. Affected products/versions are explic...

7.5CVSS7.5AI score0.00482EPSS
Exploits0References2Affected Software1
Intel
Intel
added 2024/08/13 12:0 a.m.5 views

OpenBMC Firmware Advisory

Summary: Potential security vulnerabilities in OpenBMC Firmware for some Intel® Server Platforms may allow information disclosure or denial of service. Intel is releasing firmware updates to mitigate these potential vulnerabilities. Vulnerability Details: CVEID: CVE-2023-35123 Description: Uncaug...

8.1CVSS6.8AI score0.00443EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2024/08/13 12:0 a.m.9 views

PT-2024-26327 · Openbmc · Openbmc

Name of the Vulnerable Software and Affected Versions: OpenBMC versions FW1020.00 through FW1020.60 OpenBMC versions FW1030.00 through FW1030.50 OpenBMC versions FW1050.00 through FW1050.10 Description: A vulnerability in the combination of OpenBMC's default password and session management allows...

7.5CVSS7.8AI score0.00482EPSS
Exploits0References9
Rows per page
Query Builder