Lucene search
K

1792 matches found

CVE
CVE
added 2025/03/11 2:0 p.m.166 views

CVE-2024-54085

AMI MegaRAC SPx BMC contains an authentication bypass via the Redfish Host Interface that allows remote attackers to bypass authentication. This affects SPx products, with CVSS data indicating CRITICAL impact (NVD CVSS 3.1: AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H, base 9.8) and (CVSS 4.0: AV:N/AC:L/A...

10CVSS6.7AI score0.61202EPSS
In wildExploits0References8Affected Software1
Positive Technologies
Positive Technologies
added 2025/03/11 12:0 a.m.5 views

PT-2025-10756

Name of the Vulnerable Software and Affected Versions AMI MegaRAC SPx versions prior to 2024-08-27 ASUS PRO WS W790E-SAGE SE version prior to 1.1.57 ASUS PRO WS W680M-ACE SE version prior to 1.1.21 ASUS PRO WS WRX90E-SAGE SE version prior to 2.1.28 ASUS Pro WS WRX80E-SAGE SE WIFI version prior to...

10CVSS7.2AI score0.61202EPSS
Exploits0References127
CNNVD
CNNVD
added 2025/03/11 12:0 a.m.5 views

AMI MegaRAC 安全漏洞

AMI MegaRAC is a family of service processor products from AMI, Inc. Complete out-of-band or unlit remote management of computer systems independent of operating system state or location is available to troubleshoot computers and ensure service continuity. A security vulnerability exists in AMI...

10CVSS6.8AI score0.61202EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/03/07 12:0 a.m.18 views

Amazon Linux AMI : kernel (ALAS-2025-1961)

The version of kernel installed on the remote host is prior to 4.14.355-194.598. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2025-1961 advisory. In the Linux kernel, the following vulnerability has been resolved: tipc: guard against string buffer overrun...

7.8CVSS6.7AI score0.0028EPSS
Exploits0References13
Tenable Nessus
Tenable Nessus
added 2025/03/07 12:0 a.m.24 views

Amazon Linux AMI : kernel (ALAS-2025-1963)

The version of kernel installed on the remote host is prior to 4.14.352-190.569. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2025-1963 advisory. In the Linux kernel, the following vulnerability has been resolved: bonding: Fix out-of-bounds read in...

7.8CVSS6.5AI score0.0026EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2025/03/07 12:0 a.m.13 views

Amazon Linux AMI : kernel (ALAS-2025-1962)

The version of kernel installed on the remote host is prior to 4.14.353-190.569. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2025-1962 advisory. In the Linux kernel, the following vulnerability has been resolved: tipc: Return non-zero value from tipcudpaddr2st...

8.4CVSS6.5AI score0.00269EPSS
Exploits1References8
Tenable Nessus
Tenable Nessus
added 2025/02/19 12:0 a.m.17 views

Amazon Linux AMI : kernel (ALAS-2025-1960)

The version of kernel installed on the remote host is prior to 4.14.355-195.591. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2025-1960 advisory. In the Linux kernel, the following vulnerability has been resolved: ACPI: sysfs: validate return type of STR method...

7.8CVSS6.6AI score0.00253EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/02/13 6:2 p.m.11 views

CVE-2022-40258

AMI Megarac Weak password hashes for Redfish & API...

5.3CVSS7.3AI score0.00408EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/13 4:47 p.m.7 views

CVE-2024-33659

AMI APTIOV contains a vulnerability in BIOS where an attacker may cause an Improper Input Validation by a local attacker. Successful exploitation of these vulnerabilities may lead to overwriting arbitrary memory and execute arbitrary code at SMM level, also impacting Confidentiality, Integrity, a...

5.7CVSS7.6AI score0.00155EPSS
Exploits0References3
NVD
NVD
added 2025/02/11 3:15 p.m.7 views

CVE-2024-33659

AMI APTIOV contains a vulnerability in BIOS where an attacker may cause an Improper Input Validation by a local attacker. Successful exploitation of these vulnerabilities may lead to overwriting arbitrary memory and execute arbitrary code at SMM level, also impacting Confidentiality, Integrity, a...

8.8CVSS0.00155EPSS
Exploits0References1
CVE
CVE
added 2025/02/11 3:0 p.m.41 views

CVE-2024-33659

The CVE-2024-33659 entry concerns AMI AptioV BIOS with an Improper Input Validation flaw that allows a local attacker to overwrite memory and execute arbitrary code at the System Management Mode (SMM) level, impacting confidentiality, integrity, and availability. Documents consistently identify t...

8.8CVSS7.4AI score0.00155EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2025/02/11 12:0 a.m.5 views

AMI AptioV 安全漏洞

AMI AptioV is a firmware-related editor from AMI USA. A security vulnerability exists in AMI AptioV that stems from the inclusion of a BIOS vulnerability that can be exploited by an attacker to cause incorrect input validation by a local attacker...

8.8CVSS6.4AI score0.00155EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 9:25 p.m.11 views

CVE-2022-2827

AMI MegaRAC User Enumeration Vulnerability...

7.5CVSS7.1AI score0.0171EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 7:16 p.m.15 views

CVE-2022-26872

AMI Megarac Password reset interception via API...

8.8CVSS7AI score0.00764EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/02/05 12:0 a.m.33 views

Amazon Linux AMI : kernel (ALAS-2025-1957)

The version of kernel installed on the remote host is prior to 4.14.355-195.582. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2025-1957 advisory. In the Linux kernel, the following vulnerability has been resolved: net/ipv6: avoid possible UAF in...

7.8CVSS6.6AI score0.00286EPSS
Exploits0References16
Tenable Nessus
Tenable Nessus
added 2025/01/15 12:0 a.m.25 views

Amazon Linux AMI : rsync (ALAS-2025-1954)

The version of rsync installed on the remote host is prior to 3.0.6-12.15. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2025-1954 advisory. Placeholder CVE. Details forthcoming CVE-2024-12085 Placeholder CVE. Details forthcoming CVE-2024-12086 Placeholder CVE...

7.5CVSS7.4AI score0.09353EPSS
Exploits4References12
Tenable Nessus
Tenable Nessus
added 2025/01/09 12:0 a.m.27 views

Amazon Linux AMI : expat (ALAS-2025-1953)

The version of expat installed on the remote host is prior to 2.1.0-15.35. It is, therefore, affected by a vulnerability as referenced in the ALAS-2025-1953 advisory. An issue was discovered in libexpat before 2.6.3. xmlparse.c does not reject a negative length for XMLParseBuffer. CVE-2024-45490...

9.8CVSS6.9AI score0.01686EPSS
Exploits0References4
NVD
NVD
added 2024/12/09 7:15 p.m.26 views

CVE-2022-29974

AMI aka American Megatrends NTFS driver 1.0.0 fixed in late 2021 or early 2022 has a buffer overflow. This driver is, for example, used in certain ASUS devices...

4.3CVSS0.00312EPSS
Exploits0References2
CVE
CVE
added 2024/12/09 12:0 a.m.57 views

CVE-2022-29974

AMI NTFS driver 1.0.0 contains a buffer overflow vulnerability. The driver is used in certain ASUS devices. The issue was fixed by AMI in late 2021 or early 2022; downstream products may not reflect the fix yet. Red Hat records the same description. Practical impact is a potential overflow in the...

4.3CVSS7.4AI score0.00312EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/12/09 12:0 a.m.13 views

CVE-2022-29974

AMI aka American Megatrends NTFS driver 1.0.0 fixed in late 2021 or early 2022 has a buffer overflow. This driver is, for example, used in certain ASUS devices...

7.2AI score0.00312EPSS
Exploits0References2
Rows per page
Query Builder