Lucene search
K

934 matches found

OSV
OSV
added 2026/03/25 10:27 a.m.4 views

CVE-2026-23322 ipmi: Fix use-after-free and list corruption on sender error

In the Linux kernel, the following vulnerability has been resolved: ipmi: Fix use-after-free and list corruption on sender error The analysis from Breno: When the SMI sender returns an error, smiwork delivers an error response but then jumps back to restart without cleaning up properly: 1...

7.8CVSS5.7AI score0.00124EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2026/03/25 12:23 a.m.10 views

SUSE CVE-2026-33554

ipmi-oem in FreeIPMI before 1.6.17 has exploitable buffer overflows on response messages. The Intelligent Platform Management Interface IPMI specification defines a set of interfaces for platform management. It is implemented by a large number of hardware manufacturers to support system managemen...

7.6CVSS6AI score0.00403EPSS
Exploits0References13
Tenable Nessus
Tenable Nessus
added 2026/03/25 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2026-33554

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ipmi-oem in FreeIPMI before 1.6.17 has exploitable buffer overflows on response messages. The Intelligent Platform Management Interface IPMI specification defin...

7.5CVSS6.1AI score0.00403EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/03/24 6:22 p.m.4 views

CVE-2026-33554

A flaw was found in FreeIPMI. The ipmi-oem program is used to send Intelligent Platform Management Interface IPMI OEM commands for specific hardware vendors to retrieve specific information from the hardware. A malicious server can reply with crafted response messages and cause buffer overflows...

8.8CVSS6AI score0.00403EPSS
Exploits0References7
EUVD
EUVD
added 2026/03/24 3:30 p.m.11 views

EUVD-2026-14899

ipmi-oem in FreeIPMI before 1.16.17 has exploitable buffer overflows on response messages. The Intelligent Platform Management Interface IPMI specification defines a set of interfaces for platform management. It is implemented by a large number of hardware manufacturers to support system...

7.5CVSS6.2AI score0.00403EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/03/24 12:0 a.m.3 views

CVE-2026-33554

ipmi-oem in FreeIPMI before 1.6.17 has exploitable buffer overflows on response messages. The Intelligent Platform Management Interface IPMI specification defines a set of interfaces for platform management. It is implemented by a large number of hardware manufacturers to support system managemen...

7.5CVSS6AI score0.00403EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/03/24 12:0 a.m.8 views

FreeIPMI 安全漏洞

FreeIPMI is an open-source server remote management toolset provided by FreeIPMI, which offers features for managing and monitoring IPMI interfaces. Versions of FreeIPMI prior to 1.16.17 contained security vulnerabilities. These vulnerabilities stemmed from buffer overflows in the ipmi-oem client...

7.5CVSS6.2AI score0.00403EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2026/03/24 12:0 a.m.3 views

CVE-2026-33554

ipmi-oem in FreeIPMI before 1.6.17 has exploitable buffer overflows on response messages. The Intelligent Platform Management Interface IPMI specification defines a set of interfaces for platform management. It is implemented by a large number of hardware manufacturers to support system managemen...

7.5CVSS6AI score0.00403EPSS
Exploits0
Redos
Redos
added 2026/03/13 12:0 a.m.8 views

ROS-20260313-73-0026

A vulnerability in the ipmicreateuser function of the Linux operating system kernel is related to an operation exceeding buffer boundaries in memory. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

7.8CVSS6AI score0.00155EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/02/27 7:30 a.m.7 views

CVE-2026-0980

A flaw was found in rubyipmi, a gem used in the Baseboard Management Controller BMC component of Red Hat Satellite. An authenticated attacker with host creation or update permissions could exploit this vulnerability by crafting a malicious username for the BMC interface. This could lead to remote...

8.8CVSS6.5AI score0.00771EPSS
Exploits0References6
Packet Storm
Packet Storm
added 2026/02/26 12:0 a.m.155 views

📄 Supermicro X8 Vulnerability Scanner

This code is a vulnerability scanner designed to scan for vulnerabilities in the Supermicro Onboard IPMI interface. The code checks for two known buffer overflow vulnerabilities. The checks are for older issues from 2013...

10CVSS6AI score0.71929EPSS
Exploits10
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.20 views

MiracleLinux 8 : kernel-4.18.0-240.el8 (AXSA:2021-1489:04)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-1489:04 advisory. kernel: use after free in the video driver leads to local privilege escalation CVE-2019-9458 kernel: use-after-free in drivers/bluetooth/hcildisc.c...

8.2CVSS7.2AI score0.03539EPSS
Exploits10References45
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.5 views

MiracleLinux 9 : OpenIPMI-2.0.32-5.el9_4 (AXSA:2024-8899:01)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8899:01 advisory. openipmi: missing check on the authorization type on incoming LAN messages in IPMI simulator CVE-2024-42934 Tenable has extracted the preceding description...

5CVSS5.6AI score0.00395EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/19 12:0 a.m.7 views

MiracleLinux 3 : kernel-2.6.18-53.14AXS3 (AXSA:2008-519:09)

The remote MiracleLinux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2008-519:09 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Bugs fixed: CVE-2007-6417: The shmemgetpage function mm/shmem.c...

7.8CVSS5.5AI score0.00518EPSS
Exploits7References6
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.4 views

MiracleLinux 3 : OpenIPMI-2.0.16-16.0.1.AXS3 (AXSA:2013-38:01)

The remote MiracleLinux 3 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2013-38:01 advisory. The Open IPMI project aims to develop an open code base to allow access to platform information using Intelligent Platform Management Interface IPMI. This...

3.6CVSS6AI score0.00434EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.5 views

MiracleLinux 3 : kernel-2.6.18-348.5.AXS3 (AXSA:2013-550:05)

The remote MiracleLinux 3 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2013-550:05 advisory. The kernel package contains the Linux kernel vmlinuz, the core of any Linux operating system. The kernel handles the basic functions of the operating system:...

4.7CVSS7.5AI score0.00411EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.5 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003695)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003695 advisory. A memory leak in the ipmibmcregister function in drivers/char/ipmi/ipmimsghandler.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service...

6.8CVSS7AI score0.02745EPSS
Exploits0References11
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.4 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003792)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003792 advisory. A memory leak in the ipmibmcregister function in drivers/char/ipmi/ipmimsghandler.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service...

6.8CVSS7AI score0.02745EPSS
Exploits0References11
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.4 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003627)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003627 advisory. An issue was discovered in the Linux kernel before 5.0.4. There is a use-after-free upon attempted read access to /proc/ioports after the ipmisi module is removed,...

7CVSS6.5AI score0.00451EPSS
Exploits0References17
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.3 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003834)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003834 advisory. In the Linux kernel before 4.20.5, attackers can trigger a drivers/char/ipmi/ipmimsghandler.c use-after- free and OOPS by arranging for certain simultaneous executio...

7.8CVSS6.9AI score0.04881EPSS
Exploits0References11
Rows per page
Query Builder