Lucene search

Megarac Sp-X Security Vulnerabilities - CVSS Score 9 - 10

cve

CVE-2022-40242

MegaRAC Default Credentials Vulnerability

9.8CVSS

9.6AI Score

0.002EPSS

2022-12-05 10:15 PM

cve

CVE-2022-40259

MegaRAC Default Credentials Vulnerability

9.8CVSS

9.6AI Score

0.003EPSS

2022-12-05 10:15 PM

cve

CVE-2023-28863

AMI MegaRAC SPx12 and SPx13 devices have Insufficient Verification of Data Authenticity.

9.1CVSS

9.2AI Score

0.002EPSS

2023-04-18 02:15 PM

cve

CVE-2023-3043

AMI’s SPx containsa vulnerability in the BMC where an Attacker maycause a stack-based buffer overflow via an adjacent network. A successful exploitationof this vulnerability may lead to a loss of confidentiality, integrity, and/oravailability.

9.6CVSS

8.7AI Score

0.001EPSS

2024-01-09 11:15 PM

cve

CVE-2023-34338

AMI SPx contains a vulnerability in the BMC where an Attacker may cause a use of hard-coded cryptographic key by a hard-coded certificate. A successful exploit of this vulnerability may lead to a loss of confidentiality, integrity, and availability.

9.8CVSS

9.2AI Score

0.001EPSS

2023-07-05 07:15 PM

cve

CVE-2023-34342

AMI BMC contains a vulnerability in the IPMI handler, where anattacker can upload and download arbitrary files under certain circumstances,which may lead to denial of service, escalation of privileges, informationdisclosure, or data tampering.

9.1CVSS

9.2AI Score

0.001EPSS

2023-06-12 06:15 PM

cve

CVE-2023-37293

AMI’s SPx containsa vulnerability in the BMC where an Attacker may cause astack-based buffer overflow via an adjacent network. A successful exploitationof this vulnerability may lead to a loss of confidentiality, integrity, and/oravailability.

9.6CVSS

8.7AI Score

0.001EPSS

2024-01-09 11:15 PM