10 matches found
EUVD-2019-10442
Malware in sbrugna...
CVE-2024-21935
CVE-2024-21935 affects AMD MI300X accelerators, specifically the Satellite Management Controller (SMC). The issue arises from insufficient input validation in the SMC, which could let an attacker with privileges manipulate Redfish API commands to remove files from the local root directory, potent...
AMD Instinct MI300X accelerators 安全漏洞
AMD Instinct MI300X accelerators is a data center-grade GPU accelerator card from Ultraviolet Semiconductor AMD. A security vulnerability exists in AMD Instinct MI300X accelerators that stems from improper input validation and could lead to a denial of service by a privileged attacker using...
CVE-2023-25191
AMI MegaRAC SPX devices allow Password Disclosure through Redfish. The fixed versions are SPx12-update-7.00 and SPx13-update-5.00...
Cisco Integrated Management Controller Command Injection Vulnerability (CNVD-2019-39704)
The Cisco Integrated Management Controller IMC is a baseboard management controller that provides embedded server management for Cisco UCS? C Series rackmount servers and Cisco S Series storage servers. A command injection vulnerability exists in the Redfish protocol for the Cisco Integrated...
Input validation
A vulnerability in the Redfish protocol of Cisco Integrated Management Controller IMC could allow an authenticated, remote attacker to inject and execute arbitrary commands with root privileges on an affected device. The vulnerability is due to insufficient validation of user-supplied input by th...
CVE-2019-1885
CVE-2019-1885 describes a command-injection vulnerability in the Cisco Integrated Management Controller (IMC) Redfish interface. The issue stems from insufficient validation of user-supplied input, enabling an authenticated, remote attacker to send crafted commands via the web-based management in...
CVE-2019-1885 Cisco Integrated Management Controller Command Injection Vulnerability
A vulnerability in the Redfish protocol of Cisco Integrated Management Controller IMC could allow an authenticated, remote attacker to inject and execute arbitrary commands with root privileges on an affected device. The vulnerability is due to insufficient validation of user-supplied input by th...
Cisco Integrated Management Controller Command Injection Vulnerability
A vulnerability in the Redfish protocol of Cisco Integrated Management Controller IMC could allow an authenticated, remote attacker to inject and execute arbitrary commands with root privileges on an affected device. The vulnerability is due to insufficient validation of user-supplied input by th...
PT-2019-15700 · Cisco · Cisco Integrated Management Controller
Name of the Vulnerable Software and Affected Versions: Cisco Integrated Management Controller IMC affected versions not specified Description: A vulnerability in the Redfish protocol could allow an authenticated, remote attacker to inject and execute arbitrary commands with root privileges on an...