135 matches found
CVE-2023-28863
AMI MegaRAC SPx12 and SPx13 devices have Insufficient Verification of Data Authenticity...
CVE-2023-28863
AMI MegaRAC SPx12 and SPx13 devices have Insufficient Verification of Data Authenticity...
CVE-2023-28863
AMI MegaRAC SPx12 and SPx13 devices have Insufficient Verification of Data Authenticity...
AMI MegaRAC 数据伪造问题漏洞
AMI MegaRAC is a family of service processor products from AMI. Complete out-of-band or unlit remote management of computer systems independent of operating system state or location is available to troubleshoot computers and ensure service continuity. A security vulnerability exists in AMI MegaRA...
CVE-2023-28863
Summary: CVE-2023-28863 affects AMI MegaRAC SPx12/SPx13 IPMI implementations. The issue is Insufficient Verification of Data Authenticity in IPMI 2.0 negotiation, allowing an attacker with network access to bypass negotiated integrity/confidentiality. Affected platforms include iSeries variants (...
PT-2023-22014 · Ami · Megarac Spx13 +1
Name of the Vulnerable Software and Affected Versions: AMI MegaRAC SPx12 and SPx13 devices affected versions not specified Description: The issue concerns insufficient verification of data authenticity in the affected devices. There is no information provided about the estimated number of...
CVE-2023-28863
AMI MegaRAC SPx12 and SPx13 devices have Insufficient Verification of Data Authenticity...
CVE-2023-28863
AMI MegaRAC SPx12 and SPx13 devices have Insufficient Verification of Data Authenticity...
CVE-2023-25191
AMI MegaRAC SPX devices allow Password Disclosure through Redfish. The fixed versions are SPx12-update-7.00 and SPx13-update-5.00...
CVE-2023-25191
AMI MegaRAC SPX devices allow Password Disclosure through Redfish. The fixed versions are SPx12-update-7.00 and SPx13-update-5.00...
CVE-2023-25192
AMI MegaRAC SPX devices allow User Enumeration through Redfish. The fixed versions are SPx12-update-7.00 and SPx13-update-5.00...
Code injection
AMI MegaRAC SPX devices allow User Enumeration through Redfish. The fixed versions are SPx12-update-7.00 and SPx13-update-5.00...
Default credentials
AMI MegaRAC SPX devices allow Password Disclosure through Redfish. The fixed versions are SPx12-update-7.00 and SPx13-update-5.00...
CVE-2023-25192
AMI MegaRAC SPX devices allow User Enumeration through Redfish. The fixed versions are SPx12-update-7.00 and SPx13-update-5.00...
AMI MegaRAC 安全漏洞
AMI MegaRAC is a family of service processor products from AMI. Complete out-of-band or unlit remote management of computer systems independent of operating system state or location is available to troubleshoot computers and ensure service continuity. A security vulnerability exists in AMI MegaRA...
CVE-2023-25191
AMI MegaRAC SPX devices are affected by CVE-2023-25191, which enables password disclosure through Redfish. The issue affects SPx_12-update-7.00 and SPx_13-update-5.00 fixed versions. The NVD entry lists a CVSS v3.1 base score of 7.5 (HIGH) with network attack vector, no user interaction required,...
CVE-2023-25191
AMI MegaRAC SPX devices allow Password Disclosure through Redfish. The fixed versions are SPx12-update-7.00 and SPx13-update-5.00...
AMI MegaRAC 安全漏洞
AMI MegaRAC is a family of service processor products from AMI. Complete out-of-band or unlit remote management of computer systems independent of operating system state or location is available to troubleshoot computers and ensure service continuity. A security vulnerability exists in AMI MegaRA...
CVE-2023-25192
AMI MegaRAC SPX devices allow User Enumeration through Redfish. The fixed versions are SPx12-update-7.00 and SPx13-update-5.00...
CVE-2023-25192
AMI MegaRAC SPX devices are affected by CVE-2023-25192, which enables user enumeration via Redfish. The vulnerability affects SPX family firmware where the issue exists prior to the fixed SPx12-update-7.00 and SPx13-update-5.00 releases. According to Red Hat, NVD, CVE databases, and related advis...