17 matches found
CVE-2019-11179
Intel® Baseboard Management Controller (BMC) firmware is affected by CVE-2019-11179: Insufficient input validation may allow an authenticated user to potentially disclose information over the network. Affected Intel BMC firmware families and Intel advisories describe the issue, with related CVEs ...
CVE-2019-11172
The CVE-2019-11172 entry describes an Out of bound read in Intel® Baseboard Management Controller (BMC) firmware that could allow an unauthenticated user to disclose information over the network. Intel’s advisory (Intel-SA-00313) links this and related CVEs to multiple BMC firmware vulnerabilitie...
CVE-2019-11170
Intel® Baseboard Management Controller (BMC) firmware contains CVE-2019-11170, an authentication bypass that could let an unauthenticated user gain information disclosure, escalate privileges, or cause denial of service via local access. The advisory also covers related CVEs and recommends updati...
CVE-2019-11181
CVE-2019-11181 is an Intel® Baseboard Management Controller (BMC) firmware vulnerability. An out-of-bounds read could let an unauthenticated network attacker escalate privileges. Affected products include Intel Server Boards, Compute Modules, and Server Systems using BMC firmware vulnerable to th...
CVE-2019-11182
Intel® Baseboard Management Controller (BMC) firmware contains memory corruption vulnerabilities (CVE-2019-11182 among others) that may allow an unauthenticated attacker to cause denial of service via network access. The related Red Hat and SUSE entries mirror the same issue and reference a clust...
CVE-2020-24473
CVE-2020-24473 describes an out-of-bounds write in the BMC firmware of Intel Server Boards/Systems/Compute Modules. The issue affects versions before 2.48.ce3e3bd2 and could allow an authenticated local user to escalate privileges. Intel’s advisory INTEL-SA-00476 corroborates this CVE and provide...
CVE-2019-11178
CVE-2019-11178 is a stack overflow in Intel® Baseboard Management Controller (BMC) firmware. An authenticated user can potentially trigger information disclosure and/or denial of service over a network. Affected are Intel BMC firmware on various Intel server boards, compute modules, and server sy...
CVE-2019-11180
CVE-2019-11180 is an Intel® BMC firmware vulnerability involving insufficient input validation that may allow an unauthenticated user to cause a denial of service via network access . Multiple connected documents corroborate the issue and its impact, including Intel’s advisory, Red Hat, and SUSE ...
CVE-2019-11171
CVE-2019-11171 is a heap corruption vulnerability in Intel BMC firmware that can allow an unauthenticated attacker to cause information disclosure, escalate privileges, or trigger denial of service over the network. The issue is part of a broader family of BMC flaws (including CVE-2019-11168, -11...
CVE-2019-11177
CVE-2019-11177 is an issue in Intel® Baseboard Management Controller (BMC) firmware described as an unhandled exception that may allow an unauthenticated user to cause a denial of service over the network. The Intel advisory and related Red Hat/SUSE entries confirm the BMC firmware context and th...
CVE-2020-24474
Intel lists CVE-2020-24474 as a buffer overflow in the BMC firmware for Intel Server Boards, Server Systems, and Compute Modules, prior to version 2.48.ce3e3bd2. The issue could allow an authenticated user to potentially escalate privileges via adjacent access. Affected products include Intel Ser...
CVE-2019-11175
Intel® Baseboard Management Controller (BMC) firmware exhibits insufficient input validation for CVE-2019-11175, potentially enabling a denial of service via network access for unauthenticated users. The issue is documented across multiple sources, including Intel’s advisory (CVE-2019-11175 among...
CVE-2020-24475
CVE-2020-24475 affects Intel® Server Boards/Systems/Compute Modules BMC firmware and is caused by improper initialization in the BMC firmware before version 2.48.ce3e3bd2. An authenticated user with local access may potentially enable denial of service. The Intel advisory Intel-SA-00476 recommend...
CVE-2019-11168
CVE-2019-11168 is an issue in Intel’s Baseboard Management Controller (BMC) firmware characterized by insufficient session validation, potentially allowing an unauthenticated attacker to cause information disclosure and/or denial of service over a network. The Red Hat and Intel advisories corrobo...
CVE-2019-11173
Intel® Baseboard Management Controller (BMC) firmware contains CVE-2019-11173: Insufficient session validation may allow an unauthenticated local attacker to disclose information and/or cause a denial of service. Affected is the Intel BMC firmware itself (various Intel server/compute modules and ...
CVE-2019-11174
CVE-2019-11174 relates to Intel® Baseboard Management Controller (BMC) firmware and is caused by insufficient access control, potentially allowing an unauthenticated user to disclose information over the network. Connected sources consistently describe this BMC vulnerability and the implied risk ...
CVE-2022-29493
The CVE-2022-29493 issue affects Intel Integrated Baseboard Management Controller (BMC) firmware on some Intel platforms. The vulnerability is an uncaught exception in the webserver that may allow a privileged user to cause a denial of service via network access. Affected OpenBMC components are a...