Lucene search
+L

211 matches found

RedhatCVE
RedhatCVE
•added 2025/05/22 10:46 p.m.•8 views

CVE-2022-29494

Improper input validation in firmware for OpenBMC in some IntelR platforms before versions egs-0.91-179 and bhs-04-45 may allow an authenticated user to potentially enable denial of service via network access...

6.5CVSS6.8AI score0.00642EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2025/05/22 10:26 p.m.•10 views

CVE-2022-22488

IBM OpenBMC OP910 and OP940 could allow a privileged user to cause a denial of service by uploading or deleting too many CA certificates in a short period of time. IBM X-Force ID: 2226337...

4.9CVSS6.4AI score0.00475EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2025/05/22 6:43 p.m.•6 views

CVE-2021-39296

In OpenBMC 2.9, crafted IPMI messages allow an attacker to bypass authentication and gain full control of the system...

10CVSS7.3AI score0.0301EPSS
Exploits1References1
RedhatCVE
RedhatCVE
•added 2025/05/22 3:12 p.m.•8 views

CVE-2020-14156

userchannel/passwdmgr.cpp in OpenBMC phosphor-host-ipmid before 2020-04-03 does not ensure that /etc/ipmi-pass has strong file permissions...

8.8CVSS6.8AI score0.01809EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
•added 2025/03/26 2:45 a.m.•37 views

Security Bulletin: This Power System update is being released to address CVE 2022-2809

Summary POWER10: In response to a security issue with the BMC HTTPS server, a new Power System firmware update is being released to address Common Vulnerabilities and Exposures issue number CVE-2022-2809. Vulnerability Details CVEID:CVE-2022-2809 DESCRIPTION: In IBM OPENBMC, when using using a...

8.2CVSS7.7AI score0.00591EPSS
Exploits0Affected Software7
IBM Security Bulletins
IBM Security Bulletins
•added 2025/03/26 2:2 a.m.•60 views

Security Bulletin: This Power System update is being released to address CVE 2021-29891

Summary POWER9: In response to a security issue with BMC's HTTPS server, a new Power System firmware update is being released to address Common Vulnerabilities and Exposures issue number CVE 2021-29891. Vulnerability Details CVEID:CVE-2021-29891 DESCRIPTION: IBM OPENBMC could allow a privileged...

4.9CVSS5.2AI score0.00388EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
•added 2025/02/14 9:35 p.m.•9 views

CVE-2025-20097

Uncaught exception in OpenBMC Firmware for the IntelR Server M50FCP Family and IntelR Server D50DNP Family before version R01.02.0002 may allow an authenticated user to potentially enable denial of service via network access...

5.3CVSS6.7AI score0.00456EPSS
Exploits0References1
NVD
NVD
•added 2025/02/12 10:15 p.m.•26 views

CVE-2025-20097

Uncaught exception in OpenBMC Firmware for the IntelR Server M50FCP Family and IntelR Server D50DNP Family before version R01.02.0002 may allow an authenticated user to potentially enable denial of service via network access...

5.3CVSS0.00456EPSS
Exploits0References1
Cvelist
Cvelist
•added 2025/02/12 9:19 p.m.•28 views

CVE-2025-20097

Uncaught exception in OpenBMC Firmware for the IntelR Server M50FCP Family and IntelR Server D50DNP Family before version R01.02.0002 may allow an authenticated user to potentially enable denial of service via network access...

5.3CVSS0.00456EPSS
Exploits0References1
Vulnrichment
Vulnrichment
•added 2025/02/12 9:19 p.m.•9 views

CVE-2025-20097

Uncaught exception in OpenBMC Firmware for the IntelR Server M50FCP Family and IntelR Server D50DNP Family before version R01.02.0002 may allow an authenticated user to potentially enable denial of service via network access...

5.3CVSS6.7AI score0.00456EPSS
Exploits0References1
CVE
CVE
•added 2025/02/12 9:19 p.m.•57 views

CVE-2025-20097

CVE-2025-20097 : Uncaught exception in OpenBMC Firmware for IntelĀ® Server M50FCP Family and IntelĀ® Server D50DNP Family (pre-release R01.02.0002) may allow an authenticated user to cause a network-enabled denial of service. Affected product scope is limited to these OpenBMC implementations; the r...

5.3CVSS6.8AI score0.00456EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2025/02/05 6:49 p.m.•9 views

CVE-2022-35729

Out of bounds read in firmware for OpenBMC in some IntelR platforms before version 0.72 may allow unauthenticated user to potentially enable denial of service via network access...

7.5CVSS6.9AI score0.00694EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2025/02/05 12:23 a.m.•8 views

CVE-2024-31916

IBM OpenBMC FW1050.00 through FW1050.10 BMCWeb HTTPS server component could disclose sensitive URI content to an unauthorized actor that bypasses authentication channels. IBM X-ForceID: 290026...

7.5CVSS6.7AI score0.0055EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2025/02/04 10:16 p.m.•8 views

CVE-2024-35124

A vulnerability in the combination of the OpenBMC's FW1050.00 through FW1050.10, FW1030.00 through FW1030.50, and FW1020.00 through FW1020.60 default password and session management allow an attacker to gain administrative access to the BMC. IBM X-Force ID: 290674...

7.5CVSS6.9AI score0.00482EPSS
Exploits0References1
SUSE CVE
SUSE CVE
•added 2024/09/07 3:38 a.m.•4 views

SUSE CVE-2023-52916

In the Linux kernel, the following vulnerability has been resolved: media: aspeed: Fix memory overwrite if timing is 1600x900 When capturing 1600x900, system could crash when system memory usage is tight. The way to reproduce this issue: 1. Use 1600x900 to display on host 2. Mount ISO through...

5.5CVSS7.7AI score0.00218EPSS
Exploits0References14
RedhatCVE
RedhatCVE
•added 2024/09/06 11:15 a.m.•30 views

CVE-2023-52916

In the Linux kernel, the following vulnerability has been resolved: media: aspeed: Fix memory overwrite if timing is 1600x900 When capturing 1600x900, system could crash when system memory usage is tight. The way to reproduce this issue: 1. Use 1600x900 to display on host 2. Mount ISO through...

6.7CVSS7.2AI score0.00218EPSS
Exploits0References4
NVD
NVD
•added 2024/09/06 9:15 a.m.•17 views

CVE-2023-52916

In the Linux kernel, the following vulnerability has been resolved: media: aspeed: Fix memory overwrite if timing is 1600x900 When capturing 1600x900, system could crash when system memory usage is tight. The way to reproduce this issue: 1. Use 1600x900 to display on host 2. Mount ISO through...

7.8CVSS0.00218EPSS
Exploits0References3
OSV
OSV
•added 2024/09/06 9:15 a.m.•4 views

UBUNTU-CVE-2023-52916

In the Linux kernel, the following vulnerability has been resolved: media: aspeed: Fix memory overwrite if timing is 1600x900 When capturing 1600x900, system could crash when system memory usage is tight. The way to reproduce this issue: 1. Use 1600x900 to display on host 2. Mount ISO through...

7.8CVSS6.6AI score0.00218EPSS
Exploits0References4
Vulnrichment
Vulnrichment
•added 2024/09/06 9:7 a.m.•19 views

CVE-2023-52916 media: aspeed: Fix memory overwrite if timing is 1600x900

In the Linux kernel, the following vulnerability has been resolved: media: aspeed: Fix memory overwrite if timing is 1600x900 When capturing 1600x900, system could crash when system memory usage is tight. The way to reproduce this issue: 1. Use 1600x900 to display on host 2. Mount ISO through...

6.8AI score0.00218EPSS
Exploits0References2
OSV
OSV
•added 2024/09/06 9:7 a.m.•12 views

CVE-2023-52916 media: aspeed: Fix memory overwrite if timing is 1600x900

In the Linux kernel, the following vulnerability has been resolved: media: aspeed: Fix memory overwrite if timing is 1600x900 When capturing 1600x900, system could crash when system memory usage is tight. The way to reproduce this issue: 1. Use 1600x900 to display on host 2. Mount ISO through...

7.8CVSS6.4AI score0.00218EPSS
Exploits0References6
Rows per page
Query Builder