Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

OSV
OSVadded 2025/07/02 8:50 a.m.1 views

MAL-2025-5562 Malicious code in ipmi-command (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4ae45e03814e3e6804cac4e616877eecf2a0865d1ab813e7a2a273778899bc16 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/07/02 8:50 a.m.2 views

Malicious code in ipmi-command (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4ae45e03814e3e6804cac4e616877eecf2a0865d1ab813e7a2a273778899bc16 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/02/05 8:55 a.m.3 views

CVE-2024-38509

A privilege escalation vulnerability was discovered in XCC that could allow an authenticated XCC user with elevated privileges to execute arbitrary code via a specially crafted IPMI command...

7.2CVSS7.9AI score0.00392EPSS
Exploits0
NVD
NVDadded 2024/07/26 8:15 p.m.11 views

CVE-2024-38509

A privilege escalation vulnerability was discovered in XCC that could allow an authenticated XCC user with elevated privileges to execute arbitrary code via a specially crafted IPMI command...

7.2CVSS0.00392EPSS
Exploits0References1
CVE
CVEadded 2024/07/26 7:45 p.m.36 views

CVE-2024-38509

CVE-2024-38509 affects Lenovo’s XClarity Controller (XCC). A flaw in how IPMI commands are processed can let an authenticated XCC user with elevated privileges execute arbitrary code, i.e., privilege escalation and code execution. The issue is documented with a base CVSS of 7.2 (HIGH) and is desc...

7.2CVSS7.4AI score0.00392EPSS
Exploits0References1
Cvelist
Cvelistadded 2024/07/26 7:45 p.m.13 views

CVE-2024-38509

A privilege escalation vulnerability was discovered in XCC that could allow an authenticated XCC user with elevated privileges to execute arbitrary code via a specially crafted IPMI command...

7.2CVSS0.00392EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2024/07/26 7:45 p.m.11 views

CVE-2024-38509

A privilege escalation vulnerability was discovered in XCC that could allow an authenticated XCC user with elevated privileges to execute arbitrary code via a specially crafted IPMI command...

7.2CVSS7.9AI score0.00392EPSS
Exploits0References1
Prion
Prionadded 2014/07/14 9:55 p.m.16 views

Authentication flaw

Raritan PX before 1.5.11 on DPXR20A-16 devices allows remote attackers to bypass authentication and execute arbitrary IPMI commands by using cipher suite 0 aka cipher zero and an arbitrary password...

10CVSS8.5AI score0.0087EPSS
Exploits0References2Affected Software1
securityvulns
securityvulnsadded 2007/02/02 12:0 a.m.32 views

Intel Enterprise Southbridge 2 Baseboard Management Controller unauthorized access

It's possible to connect to server mothreboard control module and execute IPMI command without authentication...

5.4CVSS3.7AI score0.00476EPSS
Exploits0
Rows per page
Query Builder