6 matches found
CVE-2024-54085
creationtimestamp| type| source ---|---|--- 2025-03-11 14:33:49+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114144289034101069 2025-03-11 14:40:25+00:00| seen| https://bsky.app/profile/cyberalerts.bsky.social/post/3lk4ccu6lze2v 2025-03-18 12:31:00+00:00| seen|...
CVE-2024-54085
AMI’s SPx contains a vulnerability in the BMC where an Attacker may bypass authentication remotely through the Redfish Host Interface. A successful exploitation of this vulnerability may lead to a loss of confidentiality, integrity, and/or availability...
CVE-2024-54085 Redfish Authentication Bypass
AMI’s SPx contains a vulnerability in the BMC where an Attacker may bypass authentication remotely through the Redfish Host Interface. A successful exploitation of this vulnerability may lead to a loss of confidentiality, integrity, and/or availability...
CVE-2024-54085
AMI MegaRAC SPx BMC contains an authentication bypass via the Redfish Host Interface that allows remote attackers to bypass authentication. This affects SPx products, with CVSS data indicating CRITICAL impact (NVD CVSS 3.1: AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H, base 9.8) and (CVSS 4.0: AV:N/AC:L/A...
PT-2025-10756
Name of the Vulnerable Software and Affected Versions AMI MegaRAC SPx versions prior to 2024-08-27 ASUS PRO WS W790E-SAGE SE version prior to 1.1.57 ASUS PRO WS W680M-ACE SE version prior to 1.1.21 ASUS PRO WS WRX90E-SAGE SE version prior to 2.1.28 ASUS Pro WS WRX80E-SAGE SE WIFI version prior to...
HPESBCR04828 rev.2 - HPE Cray XD670 Server Using AMI BMC Redfish API, Authentication Bypass Vulnerability
Potential Security Impact: Remote: Authentication Bypass SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Cray XD670 - Prior to BMC v1.19 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | | CVE-2024-54085 | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H | 10.0 |...