Lucene search
+L

75 matches found

Prion
Prion
added 2021/06/09 8:15 p.m.17 views

Buffer overflow

Buffer overflow in the BMC firmware for some IntelR Server Boards, Server Systems and Compute Modules before version 2.48.ce3e3bd2 may allow an authenticated user to potentially enable escalation of privilege via adjacent access...

5.2CVSS8.2AI score0.00389EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/06/09 7:1 p.m.23 views

CVE-2020-24473

Out of bounds write in the BMC firmware for some IntelR Server Boards, Server Systems and Compute Modules before version 2.48.ce3e3bd2 may allow an authenticated user to potentially enable escalation of privilege via local access...

7.9AI score0.00246EPSS
Exploits0References1
CVE
CVE
added 2021/06/09 7:1 p.m.65 views

CVE-2020-24473

CVE-2020-24473 describes an out-of-bounds write in the BMC firmware of Intel Server Boards/Systems/Compute Modules. The issue affects versions before 2.48.ce3e3bd2 and could allow an authenticated local user to escalate privileges. Intel’s advisory INTEL-SA-00476 corroborates this CVE and provide...

7.8CVSS7.8AI score0.00246EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2021/02/17 2:15 p.m.3 views

CVE-2020-12375

Heap overflow in the BMC firmware for some IntelR Server Boards, Server Systems and Compute Modules before version 2.47 may allow an authenticated user to potentially enable escalation of privilege via local access...

6.7CVSS6.7AI score0.00267EPSS
Exploits0References1
Prion
Prion
added 2021/02/17 2:15 p.m.16 views

Cross site scripting

Out of bounds read in the BMC firmware for some IntelR Server Boards, Server Systems and Compute Modules before version 2.47 may allow an authenticated user to potentially enable escalation of privilege via local access...

4.6CVSS7.7AI score0.00264EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2021/02/17 2:15 p.m.20 views

Heap overflow

Heap overflow in the BMC firmware for some IntelR Server Boards, Server Systems and Compute Modules before version 2.47 may allow an authenticated user to potentially enable escalation of privilege via local access...

4.6CVSS6.9AI score0.00267EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2021/02/17 2:15 p.m.14 views

Input validation

Insufficient input validation in the BMC firmware for some IntelR Server Boards, Server Systems and Compute Modules before version 2.47 may allow an authenticated user to potentially enable escalation of privilege via local access...

4.6CVSS7.7AI score0.00264EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2021/02/17 1:56 p.m.45 views

CVE-2020-12376

CVE-2020-12376 affects Intel® Server Boards, Server Systems and Compute Modules BMC firmware. The issue is use of a hard-coded key in firmware before version 2.47, potentially enabling information disclosure via local access by an authenticated user. Intel’s advisory Intel‑SA‑00434 confirms the v...

5.5CVSS5.2AI score0.00236EPSS
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/02/16 12:0 a.m.7 views

The vulnerability of microprogrammed software in server boards, server systems, and Intel computing modules arises from operations that occur outside the buffer boundaries in memory. This vulnerability allows attackers to exploit their privileges.

The vulnerability of microprogrammed software in server boards, server systems, and Intel computing modules is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow attackers to enhance their privileges...

6.5CVSS7.6AI score0.00264EPSS
Exploits0References2Affected Software6
BDU FSTEC
BDU FSTEC
added 2021/02/16 12:0 a.m.8 views

The vulnerability of microprogrammed software in server boards, server systems, and Intel computing modules, which stems from the use of rigidly encrypted credentials, allows attackers to gain unauthorized access to protected information.

The vulnerability of microprogrammed software in server boards, server systems, and Intel computing modules is related to the use of rigidly encrypted credentials. Exploiting this vulnerability can allow an intruder to gain unauthorized access to protected information...

3.8CVSS5.9AI score0.00236EPSS
Exploits0References2Affected Software6
Intel
Intel
added 2021/02/09 12:0 a.m.31 views

Intel® Server Boards, Server Systems and Compute Modules Advisory

Summary: Potential security vulnerabilities in some Intel® Server Boards, Server Systems and Compute Modules Baseboard Management Controller BMC firmware may allow escalation of privilege or information disclosure. Intel is releasing firmware updates to mitigate these potential vulnerabilities...

7.8CVSS6.9AI score0.00267EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2020/10/27 12:0 a.m.12 views

The vulnerability of microprogrammed software in server boards, server systems, and Intel computing modules arises from copying buffers without checking the size of the input data. This allows attackers to exploit their privileges.

The vulnerability of microprogrammed software in server boards, server systems, and Intel computing modules is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability can allow a malicious actor to increase their privileges remotely...

4.7CVSS7.6AI score0.00693EPSS
Exploits0References3Affected Software18
BDU FSTEC
BDU FSTEC
added 2020/10/27 12:0 a.m.11 views

The vulnerability of microprogrammed software in server boards, server systems, and Intel computing modules arises from copying buffers without checking the size of the input data. This allows attackers to exploit their privileges.

The vulnerability of microprogrammed software in server boards, server systems, and Intel computing modules is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability can allow attackers to enhance their privileges...

7.8CVSS7.6AI score0.00376EPSS
Exploits0References3Affected Software18
BDU FSTEC
BDU FSTEC
added 2020/10/27 12:0 a.m.10 views

The vulnerability of microprogrammed software in server boards, server systems, and Intel computing modules, related to authentication deficiencies, allows attackers to escalate their privileges.

The vulnerability of socket services in microprogramming software for server boards, server systems, and Intel computing modules is related to authentication deficiencies. Exploiting this vulnerability can allow attackers to enhance their privileges remotely...

4.7CVSS7.6AI score0.00684EPSS
Exploits0References3Affected Software18
BDU FSTEC
BDU FSTEC
added 2020/10/27 12:0 a.m.11 views

The vulnerability of microprogrammed software in server boards, server systems, and Intel computing modules, related to access control deficiencies, allows attackers to trigger service failures.

The vulnerability of microprogrammed software in server boards, server systems, and Intel computing modules is related to deficiencies in access control. Exploiting this vulnerability can allow attackers to cause service failures...

3.8CVSS5.9AI score0.00303EPSS
Exploits0References3Affected Software18
BDU FSTEC
BDU FSTEC
added 2020/10/27 12:0 a.m.14 views

The vulnerability of microprogramming software in server boards, server systems, and Intel computing modules relates to writing beyond the buffer memory boundaries, allowing attackers to exploit their privileges.

The vulnerability of microprogrammed software in server boards, server systems, and Intel computing modules is related to writing beyond the buffer memory boundaries. Exploiting this vulnerability can allow a malicious actor to gain increased privileges remotely...

6.3CVSS7.8AI score0.00714EPSS
Exploits0References3Affected Software18
BDU FSTEC
BDU FSTEC
added 2020/10/27 12:0 a.m.9 views

The vulnerability of microprogrammed software in server boards, server systems, and Intel computing modules relates to the improper activation of a pointer, allowing an attacker to trigger a service failure.

The vulnerability of microprogrammed software in server boards, server systems, and Intel computing modules is related to the exploitation of a faulty pointer. Exploiting this vulnerability can allow attackers to cause service failures...

4.3CVSS5.9AI score0.00311EPSS
Exploits0References3Affected Software18
BDU FSTEC
BDU FSTEC
added 2020/10/27 12:0 a.m.10 views

The vulnerability of microprogrammed software in server boards, server systems, and Intel computing modules, related to authentication deficiencies, allows attackers to escalate their privileges.

The vulnerability of socket services in microprogramming software for server boards, server systems, and Intel computing modules is related to authentication deficiencies. Exploiting this vulnerability can allow attackers to enhance their privileges...

3.8CVSS7.2AI score0.00332EPSS
Exploits0References3Affected Software18
BDU FSTEC
BDU FSTEC
added 2020/10/27 12:0 a.m.10 views

The vulnerability of microprogramming software in server boards, server systems, and Intel computing modules arises from the lack of measures to protect input data. This allows attackers to exploit their privileges.

The vulnerability of microprogrammed software in server boards, server systems, and Intel computing modules is related to the lack of measures for cleaning incoming data. Exploiting this vulnerability can allow a remote attacker to increase their privileges...

5.4CVSS6.6AI score0.00608EPSS
Exploits0References3Affected Software18
BDU FSTEC
BDU FSTEC
added 2020/10/27 12:0 a.m.9 views

The vulnerability of microprogrammed software in server boards, server systems, and Intel computing modules, related to authentication deficiencies, allows attackers to escalate their privileges.

The vulnerability of socket services in microprogramming software for server boards, server systems, and Intel computing modules is related to authentication deficiencies. Exploiting this vulnerability can allow attackers to enhance their privileges remotely...

6.1CVSS7.6AI score0.00664EPSS
Exploits0References3Affected Software18
Rows per page
Query Builder