934 matches found
CVE-2026-23322 ipmi: Fix use-after-free and list corruption on sender error
In the Linux kernel, the following vulnerability has been resolved: ipmi: Fix use-after-free and list corruption on sender error The analysis from Breno: When the SMI sender returns an error, smiwork delivers an error response but then jumps back to restart without cleaning up properly: 1...
SUSE CVE-2026-33554
ipmi-oem in FreeIPMI before 1.6.17 has exploitable buffer overflows on response messages. The Intelligent Platform Management Interface IPMI specification defines a set of interfaces for platform management. It is implemented by a large number of hardware manufacturers to support system managemen...
Linux Distros Unpatched Vulnerability : CVE-2026-33554
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ipmi-oem in FreeIPMI before 1.6.17 has exploitable buffer overflows on response messages. The Intelligent Platform Management Interface IPMI specification defin...
CVE-2026-33554
A flaw was found in FreeIPMI. The ipmi-oem program is used to send Intelligent Platform Management Interface IPMI OEM commands for specific hardware vendors to retrieve specific information from the hardware. A malicious server can reply with crafted response messages and cause buffer overflows...
EUVD-2026-14899
ipmi-oem in FreeIPMI before 1.16.17 has exploitable buffer overflows on response messages. The Intelligent Platform Management Interface IPMI specification defines a set of interfaces for platform management. It is implemented by a large number of hardware manufacturers to support system...
CVE-2026-33554
ipmi-oem in FreeIPMI before 1.6.17 has exploitable buffer overflows on response messages. The Intelligent Platform Management Interface IPMI specification defines a set of interfaces for platform management. It is implemented by a large number of hardware manufacturers to support system managemen...
FreeIPMI 安全漏洞
FreeIPMI is an open-source server remote management toolset provided by FreeIPMI, which offers features for managing and monitoring IPMI interfaces. Versions of FreeIPMI prior to 1.16.17 contained security vulnerabilities. These vulnerabilities stemmed from buffer overflows in the ipmi-oem client...
CVE-2026-33554
ipmi-oem in FreeIPMI before 1.6.17 has exploitable buffer overflows on response messages. The Intelligent Platform Management Interface IPMI specification defines a set of interfaces for platform management. It is implemented by a large number of hardware manufacturers to support system managemen...
ROS-20260313-73-0026
A vulnerability in the ipmicreateuser function of the Linux operating system kernel is related to an operation exceeding buffer boundaries in memory. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
CVE-2026-0980
A flaw was found in rubyipmi, a gem used in the Baseboard Management Controller BMC component of Red Hat Satellite. An authenticated attacker with host creation or update permissions could exploit this vulnerability by crafting a malicious username for the BMC interface. This could lead to remote...
📄 Supermicro X8 Vulnerability Scanner
This code is a vulnerability scanner designed to scan for vulnerabilities in the Supermicro Onboard IPMI interface. The code checks for two known buffer overflow vulnerabilities. The checks are for older issues from 2013...
MiracleLinux 8 : kernel-4.18.0-240.el8 (AXSA:2021-1489:04)
The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-1489:04 advisory. kernel: use after free in the video driver leads to local privilege escalation CVE-2019-9458 kernel: use-after-free in drivers/bluetooth/hcildisc.c...
MiracleLinux 9 : OpenIPMI-2.0.32-5.el9_4 (AXSA:2024-8899:01)
The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8899:01 advisory. openipmi: missing check on the authorization type on incoming LAN messages in IPMI simulator CVE-2024-42934 Tenable has extracted the preceding description...
MiracleLinux 3 : kernel-2.6.18-53.14AXS3 (AXSA:2008-519:09)
The remote MiracleLinux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2008-519:09 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Bugs fixed: CVE-2007-6417: The shmemgetpage function mm/shmem.c...
MiracleLinux 3 : OpenIPMI-2.0.16-16.0.1.AXS3 (AXSA:2013-38:01)
The remote MiracleLinux 3 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2013-38:01 advisory. The Open IPMI project aims to develop an open code base to allow access to platform information using Intelligent Platform Management Interface IPMI. This...
MiracleLinux 3 : kernel-2.6.18-348.5.AXS3 (AXSA:2013-550:05)
The remote MiracleLinux 3 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2013-550:05 advisory. The kernel package contains the Linux kernel vmlinuz, the core of any Linux operating system. The kernel handles the basic functions of the operating system:...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003695)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003695 advisory. A memory leak in the ipmibmcregister function in drivers/char/ipmi/ipmimsghandler.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003792)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003792 advisory. A memory leak in the ipmibmcregister function in drivers/char/ipmi/ipmimsghandler.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003627)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003627 advisory. An issue was discovered in the Linux kernel before 5.0.4. There is a use-after-free upon attempted read access to /proc/ioports after the ipmisi module is removed,...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003834)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003834 advisory. In the Linux kernel before 4.20.5, attackers can trigger a drivers/char/ipmi/ipmimsghandler.c use-after- free and OOPS by arranging for certain simultaneous executio...