CVE-2026-46128

A flaw was found in the Linux kernel's Intelligent Platform Management Interface IPMI subsystem. This vulnerability occurs when the kernel processes event message buffer responses from Baseboard Management Controllers BMCs. Some BMCs may return an empty message instead of an expected error, which...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: “Revert ‘ipmi: fix msg stack when IPMI is disconnected’” This change is reflected in the commit c608966f3f9c2dca596967501d00753282b395fc. This patch contains a subtle bug that can cause the IPMI driver to enter an infinite loop i...

CVE-2025-8404

Stack buffer overflow vulnerability exists in the Supermicro BMC Shared library. An authenticated attacker with access to the BMC exploit stack buffer via a crafted header and achieve arbitrary code execution of the BMC’s firmware operating system...

PT-2025-47245

Name of the Vulnerable Software and Affected Versions Supermicro BMC versions affected versions not specified Description A buffer overflow exists in the web stack of the Supermicro BMC on the MBD-X13SEDW-F model. An attacker gaining access to the BMC Web server can exploit this issue using a...

PT-2025-47244

Name of the Vulnerable Software and Affected Versions SMASH-CLP shell affected versions not specified Description A stack-based buffer overflow exists in the SMASH-CLP shell. An authenticated attacker with SSH access to the Baseboard Management Controller BMC can exploit this issue by providing a...

CVE-2025-7937 Supermicro BMC firmware update validation bypass

There is a vulnerability in the Supermicro BMC firmware validation logic at Supermicro MBD-X12STW . An attacker can update the system firmware with a specially crafted image...

kernel: hwmon: (ibmpex) Fix possible UAF when ibmpex_register_bmc() fails

In the Linux kernel, the following vulnerability has been resolved: hwmon: ibmpex Fix possible UAF when ibmpexregisterbmc fails Smatch report warning as follows: drivers/hwmon/ibmpex.c:509 ibmpexregisterbmc warn: '&data-list' not removed from list If ibmpexfindsensors fails in ibmpexregisterbmc,...

CVE-2023-34333

AMI’s SPx contains a vulnerability in the BMC where an Attacker may cause an untrusted pointer to dereference via a local network. A successful exploitation of this vulnerability may lead to a loss of confidentiality, integrity, and/or availability...

PT-2024-1583 · Ami · Ami Megarac Sp-X

Name of the Vulnerable Software and Affected Versions: AMI MegaRAC SP-X affected versions not specified Description: The issue is related to a buffer overflow in the dynamic memory of the AMI MegaRAC SP-X firmware, which can be exploited by an attacker over the network. This may lead to a loss of...

CVE-2023-35861

A shell-injection vulnerability in email notifications on Supermicro motherboards such as H12DST-B before 03.10.35 allows remote attackers to inject execute arbitrary commands as root on the BMC...

Intel Server Board 安全漏洞

Intel Server Board is a server motherboard from Intel Corporation USA. A security vulnerability exists in Intel Server Board BMC firmware versions prior to 2.90, which stems from the presence of a buffer overflow issue. An attacker could exploit the vulnerability to enable privilege escalation vi...

Vulnerabilities fixed in Intel BMC and OpenBMC firmware

Intel has fixed vulnerabilities in the BMC and OpenBMC firmware for various processors. A malicious party could exploit them to cause a denial-of-service, or grant themselves elevated privileges, possibly up to administrator level. Intel has released updates to fix the vulnerabilities in BMC and...

PT-2023-14083 · Nvidia · Nvidia Bmc

Name of the Vulnerable Software and Affected Versions: NVIDIA BMC affected versions not specified Description: The issue concerns a vulnerability in the SPX REST API of NVIDIA BMC, allowing an authorized attacker to access arbitrary files. This may lead to information disclosure. Recommendations:...

ASUS BMC Firmware 安全特征问题漏洞

ASUS BMC Firmware is a firmware from Asus China. A buffer overflow vulnerability exists in the ASUS BMC firmware Web management page, which originates from a specific function that does not validate the length of a user-entered string, and can be exploited by a remote attacker to terminate a Web...

ASUS BMC Firmware 安全特征问题漏洞

ASUS BMC Firmware is a firmware from Asus China. A security feature vulnerability exists in the ASUS BMC Firmware Web management page, which originates from a buffer overflow due to non-validation of the length of a user-entered string. No details of the vulnerability are provided at this time...

多款 Intel BMC 固件缓冲区错误漏洞

Intel is an American company that develops CPUs and is the world's largest manufacturer of personal computer parts and CPUs. Multiple Intel® Server heap overflow vulnerabilities can be exploited by attackers to escalate privileges via local access...

CVE-2021-26571

The Baseboard Management Controller BMC firmware in HPE Apollo 70 System prior to version 3.0.14.0 has a local buffer overflow in libifc.so webgetactivexcfg function...

Intel Baseboard Management Controller Input Validation Error Vulnerability (CNVD-2020-12692)

The Intel Baseboard Management Controller BMC is a baseboard management controller from Intel Corporation USA. An input validation error vulnerability exists in Intel BMC, which can be exploited by an attacker to cause a denial of service...

CVE-2019-11175

Insufficient input validation in IntelR Baseboard Management Controller firmware may allow an unauthenticated user to potentially enable denial of service via network access...

CVE-2019-11170

Authentication bypass in IntelR Baseboard Management Controller firmware may allow an unauthenticated user to potentially enable information disclosure, escalation of privilege and/or denial of service via local access...