Lucene search
K

29 matches found

OSV
OSV
added 2022/10/24 2:15 p.m.7 views

CVE-2021-26727

Multiple command injections and stack-based buffer overflows vulnerabilities in the SubNethandlerfunc function of spxrestservice allow an attacker to execute arbitrary code with the same privileges as the server user root. This issue affects: Lanner Inc IAC-AST2500A standard firmware version 1.10...

9.8CVSS6.4AI score0.02285EPSS
Exploits0References2
OSV
OSV
added 2022/10/24 2:15 p.m.7 views

CVE-2021-26730

A stack-based buffer overflow vulnerability in a subfunction of the Loginhandlerfunc function of spxrestservice allows an attacker to execute arbitrary code with the same privileges as the server user root. This issue affects: Lanner Inc IAC-AST2500A standard firmware version 1.10.0...

9.8CVSS6.4AI score0.00978EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/10/24 12:0 a.m.4 views

Lanner IAC-AST2500A 缓冲区错误漏洞

The Lanner IAC-AST2500A is a module and accelerator card from Lanner. It is suitable for Lanner network devices to support remote management and monitoring of system operation based on the IPMI standard. A buffer error vulnerability exists in the Lanner IAC-AST2500A standard firmware version...

10CVSS9.4AI score0.02285EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2022/10/24 12:0 a.m.4 views

PT-2022-12229 · Lanner · Lanner Inc Iac-Ast2500A

Name of the Vulnerable Software and Affected Versions: Lanner Inc IAC-AST2500A standard firmware version 1.10.0 Description: A broken access control issue in the SubNet handler func function of spx restservice allows an attacker to change security access rights to KVM and Virtual Media...

6.5CVSS5.3AI score0.00443EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2022/10/24 12:0 a.m.4 views

PT-2022-9790 · Lanner · Iac-Ast2500A

Name of the Vulnerable Software and Affected Versions: Lanner Inc IAC-AST2500A standard firmware version 1.10.0 Description: Command injection and stack-based buffer overflow vulnerabilities in the KillDupUsr func function of spx restservice allow an attacker to execute arbitrary code with the sa...

10CVSS10AI score0.02285EPSS
Exploits0References5
CNNVD
CNNVD
added 2022/10/24 12:0 a.m.3 views

Lanner IAC-AST2500A 缓冲区错误漏洞

The Lanner IAC-AST2500A is a module and accelerator card from Lanner. It is suitable for Lanner network devices to support remote management and monitoring of system operation based on the IPMI standard. A buffer error vulnerability exists in Lanner IAC-AST2500A standard firmware version 1.00.0,...

10CVSS9.4AI score0.00978EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2022/10/24 12:0 a.m.6 views

PT-2022-9793 · Lanner · Iac-Ast2500A

Name of the Vulnerable Software and Affected Versions: Lanner Inc IAC-AST2500A standard firmware version 1.10.0 Description: The issue is related to command injection and multiple stack-based buffer overflows vulnerabilities in the modifyUserb func function of spx restservice. This allows an...

9.8CVSS8.5AI score0.02308EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2022/10/24 12:0 a.m.6 views

PT-2022-9794 · Lanner · Iac-Ast2500A

Name of the Vulnerable Software and Affected Versions: Lanner Inc IAC-AST2500A standard firmware version 1.10.0 Description: A broken access control issue in the First network func function of spx restservice allows an attacker to arbitrarily change the network configuration of the BMC...

6.5CVSS5.3AI score0.00443EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2022/10/24 12:0 a.m.4 views

PT-2022-9792 · Lanner · Lanner Inc Iac-Ast2500A

Name of the Vulnerable Software and Affected Versions: Lanner Inc IAC-AST2500A standard firmware version 1.10.0 Description: A stack-based buffer overflow vulnerability in a subfunction of the Login handler func function of spx restservice allows an attacker to execute arbitrary code with the sam...

10CVSS9.8AI score0.00978EPSS
Exploits0References4
CNNVD
CNNVD
added 2022/10/24 12:0 a.m.4 views

Lanner IAC-AST2500A 缓冲区错误漏洞

The Lanner IAC-AST2500A is a module and accelerator card from Lanner. It is suitable for Lanner network devices to support remote management and monitoring of system operation based on the IPMI standard. A buffer error vulnerability exists in the Lanner IAC-AST2500A version 1.00.0, which stems fr...

9.8CVSS9.1AI score0.02308EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2022/10/24 12:0 a.m.5 views

PT-2022-9791 · Lanner · Iac-Ast2500A

Name of the Vulnerable Software and Affected Versions: Lanner Inc IAC-AST2500A standard firmware version 1.10.0 Description: The issue is related to command injection and multiple stack-based buffer overflows vulnerabilities in the Login handler func function of spx restservice, allowing an...

10CVSS9.8AI score0.02285EPSS
Exploits0References5
OSV
OSV
added 2021/01/29 7:15 p.m.4 views

CVE-2021-25133

The Baseboard Management ControllerBMC in HPE Cloudline CL5800 Gen9 Server; HPE Cloudline CL5200 Gen9 Server; HPE Cloudline CL4100 Gen10 Server; HPE Cloudline CL3100 Gen10 Server; HPE Cloudline CL5800 Gen10 Server BMC firmware has a local buffer overlfow in spxrestservice setradiusconfigfunc...

7.8CVSS6AI score0.00324EPSS
Exploits0References1
OSV
OSV
added 2021/01/29 7:15 p.m.2 views

CVE-2021-25138

The Baseboard Management ControllerBMC in HPE Cloudline CL5800 Gen9 Server; HPE Cloudline CL5200 Gen9 Server; HPE Cloudline CL4100 Gen10 Server; HPE Cloudline CL3100 Gen10 Server; HPE Cloudline CL5800 Gen10 Server BMC firmware has a local buffer overlfow in spxrestservice uploadsshkey function...

7.8CVSS7.3AI score0.00324EPSS
Exploits0References1
OSV
OSV
added 2021/01/29 7:15 p.m.4 views

CVE-2021-25136

The Baseboard Management ControllerBMC in HPE Cloudline CL5800 Gen9 Server; HPE Cloudline CL5200 Gen9 Server; HPE Cloudline CL4100 Gen10 Server; HPE Cloudline CL3100 Gen10 Server; HPE Cloudline CL5800 Gen10 Server BMC firmware has a local buffer overlfow in spxrestservice...

7.8CVSS7.3AI score0.00324EPSS
Exploits0References1
OSV
OSV
added 2021/01/29 7:15 p.m.3 views

CVE-2021-25134

The Baseboard Management ControllerBMC in HPE Cloudline CL5800 Gen9 Server; HPE Cloudline CL5200 Gen9 Server; HPE Cloudline CL4100 Gen10 Server; HPE Cloudline CL3100 Gen10 Server; HPE Cloudline CL5800 Gen10 Server BMC firmware has a local buffer overlfow in spxrestservice setremoteimageinfofunc...

7.8CVSS7.3AI score0.00324EPSS
Exploits0References1
OSV
OSV
added 2021/01/29 7:15 p.m.2 views

CVE-2021-25135

The Baseboard Management ControllerBMC in HPE Cloudline CL5800 Gen9 Server; HPE Cloudline CL5200 Gen9 Server; HPE Cloudline CL4100 Gen10 Server; HPE Cloudline CL3100 Gen10 Server; HPE Cloudline CL5800 Gen10 Server BMC firmware has a local buffer overlfow in spxrestservice setsmtpfunc function...

7.8CVSS7.3AI score0.00324EPSS
Exploits0References1
OSV
OSV
added 2021/01/29 7:15 p.m.3 views

CVE-2021-25131

The Baseboard Management ControllerBMC in HPE Cloudline CL5800 Gen9 Server; HPE Cloudline CL5200 Gen9 Server; HPE Cloudline CL4100 Gen10 Server; HPE Cloudline CL3100 Gen10 Server; HPE Cloudline CL5800 Gen10 Server BMC firmware has a local buffer overlfow in spxrestservice setfwimagelocationfunc...

7.8CVSS7.3AI score0.00324EPSS
Exploits0References1
OSV
OSV
added 2021/01/29 7:15 p.m.3 views

CVE-2021-25130

The Baseboard Management ControllerBMC in HPE Cloudline CL5800 Gen9 Server; HPE Cloudline CL5200 Gen9 Server; HPE Cloudline CL4100 Gen10 Server; HPE Cloudline CL3100 Gen10 Server; HPE Cloudline CL5800 Gen10 Server BMC firmware has a local buffer overlfow in spxrestservice setactdirfunc function...

7.8CVSS6AI score0.00324EPSS
Exploits0References1
OSV
OSV
added 2021/01/29 1:15 p.m.4 views

CVE-2021-25123

The Baseboard Management ControllerBMC in HPE Cloudline CL5800 Gen9 Server; HPE Cloudline CL5200 Gen9 Server; HPE Cloudline CL4100 Gen10 Server; HPE Cloudline CL3100 Gen10 Server; HPE Cloudline CL5800 Gen10 Server BMC firmware has a local buffer overlfow in spxrestservice addlicensefunc function...

7.8CVSS6AI score0.00303EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/01/29 12:0 a.m.5 views

HPE Cloudline Buffer Error Vulnerability in Multiple Products

HPE Cloudline CL5800 Gen9 Server and others are a dense cloud storage server appliance from HPE America. A buffer error vulnerability exists in multiple HPE Cloudline products, which stems from a local buffer overflow in the spxrestservice setradiusconfigfunc function. The following products and...

7.8CVSS7.3AI score0.00324EPSS
Exploits0References2
Rows per page
Query Builder