75 matches found
Buffer overflow
Buffer overflow in the BMC firmware for some IntelR Server Boards, Server Systems and Compute Modules before version 2.48.ce3e3bd2 may allow an authenticated user to potentially enable escalation of privilege via adjacent access...
CVE-2020-24473
Out of bounds write in the BMC firmware for some IntelR Server Boards, Server Systems and Compute Modules before version 2.48.ce3e3bd2 may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2020-24473
CVE-2020-24473 describes an out-of-bounds write in the BMC firmware of Intel Server Boards/Systems/Compute Modules. The issue affects versions before 2.48.ce3e3bd2 and could allow an authenticated local user to escalate privileges. Intel’s advisory INTEL-SA-00476 corroborates this CVE and provide...
CVE-2020-12375
Heap overflow in the BMC firmware for some IntelR Server Boards, Server Systems and Compute Modules before version 2.47 may allow an authenticated user to potentially enable escalation of privilege via local access...
Cross site scripting
Out of bounds read in the BMC firmware for some IntelR Server Boards, Server Systems and Compute Modules before version 2.47 may allow an authenticated user to potentially enable escalation of privilege via local access...
Heap overflow
Heap overflow in the BMC firmware for some IntelR Server Boards, Server Systems and Compute Modules before version 2.47 may allow an authenticated user to potentially enable escalation of privilege via local access...
Input validation
Insufficient input validation in the BMC firmware for some IntelR Server Boards, Server Systems and Compute Modules before version 2.47 may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2020-12376
CVE-2020-12376 affects Intel® Server Boards, Server Systems and Compute Modules BMC firmware. The issue is use of a hard-coded key in firmware before version 2.47, potentially enabling information disclosure via local access by an authenticated user. Intel’s advisory Intel‑SA‑00434 confirms the v...
The vulnerability of microprogrammed software in server boards, server systems, and Intel computing modules arises from operations that occur outside the buffer boundaries in memory. This vulnerability allows attackers to exploit their privileges.
The vulnerability of microprogrammed software in server boards, server systems, and Intel computing modules is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow attackers to enhance their privileges...
The vulnerability of microprogrammed software in server boards, server systems, and Intel computing modules, which stems from the use of rigidly encrypted credentials, allows attackers to gain unauthorized access to protected information.
The vulnerability of microprogrammed software in server boards, server systems, and Intel computing modules is related to the use of rigidly encrypted credentials. Exploiting this vulnerability can allow an intruder to gain unauthorized access to protected information...
Intel® Server Boards, Server Systems and Compute Modules Advisory
Summary: Potential security vulnerabilities in some Intel® Server Boards, Server Systems and Compute Modules Baseboard Management Controller BMC firmware may allow escalation of privilege or information disclosure. Intel is releasing firmware updates to mitigate these potential vulnerabilities...
The vulnerability of microprogrammed software in server boards, server systems, and Intel computing modules arises from copying buffers without checking the size of the input data. This allows attackers to exploit their privileges.
The vulnerability of microprogrammed software in server boards, server systems, and Intel computing modules is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability can allow a malicious actor to increase their privileges remotely...
The vulnerability of microprogrammed software in server boards, server systems, and Intel computing modules arises from copying buffers without checking the size of the input data. This allows attackers to exploit their privileges.
The vulnerability of microprogrammed software in server boards, server systems, and Intel computing modules is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability can allow attackers to enhance their privileges...
The vulnerability of microprogrammed software in server boards, server systems, and Intel computing modules, related to authentication deficiencies, allows attackers to escalate their privileges.
The vulnerability of socket services in microprogramming software for server boards, server systems, and Intel computing modules is related to authentication deficiencies. Exploiting this vulnerability can allow attackers to enhance their privileges remotely...
The vulnerability of microprogrammed software in server boards, server systems, and Intel computing modules, related to access control deficiencies, allows attackers to trigger service failures.
The vulnerability of microprogrammed software in server boards, server systems, and Intel computing modules is related to deficiencies in access control. Exploiting this vulnerability can allow attackers to cause service failures...
The vulnerability of microprogramming software in server boards, server systems, and Intel computing modules relates to writing beyond the buffer memory boundaries, allowing attackers to exploit their privileges.
The vulnerability of microprogrammed software in server boards, server systems, and Intel computing modules is related to writing beyond the buffer memory boundaries. Exploiting this vulnerability can allow a malicious actor to gain increased privileges remotely...
The vulnerability of microprogrammed software in server boards, server systems, and Intel computing modules relates to the improper activation of a pointer, allowing an attacker to trigger a service failure.
The vulnerability of microprogrammed software in server boards, server systems, and Intel computing modules is related to the exploitation of a faulty pointer. Exploiting this vulnerability can allow attackers to cause service failures...
The vulnerability of microprogrammed software in server boards, server systems, and Intel computing modules, related to authentication deficiencies, allows attackers to escalate their privileges.
The vulnerability of socket services in microprogramming software for server boards, server systems, and Intel computing modules is related to authentication deficiencies. Exploiting this vulnerability can allow attackers to enhance their privileges...
The vulnerability of microprogramming software in server boards, server systems, and Intel computing modules arises from the lack of measures to protect input data. This allows attackers to exploit their privileges.
The vulnerability of microprogrammed software in server boards, server systems, and Intel computing modules is related to the lack of measures for cleaning incoming data. Exploiting this vulnerability can allow a remote attacker to increase their privileges...
The vulnerability of microprogrammed software in server boards, server systems, and Intel computing modules, related to authentication deficiencies, allows attackers to escalate their privileges.
The vulnerability of socket services in microprogramming software for server boards, server systems, and Intel computing modules is related to authentication deficiencies. Exploiting this vulnerability can allow attackers to enhance their privileges remotely...