Show filters
29 Total Results
Displaying 21-29 of 29
Sort by:
Attacker Value
Unknown
CVE-2023-34344
Disclosure Date: June 12, 2023 (last updated February 25, 2025)
AMI BMC contains a vulnerability in the IPMI
handler, where an unauthorized attacker can use certain oracles to guess a
valid username, which may lead to information disclosure.
0
Attacker Value
Unknown
CVE-2023-34341
Disclosure Date: June 12, 2023 (last updated February 25, 2025)
AMI BMC contains a vulnerability in the SPX REST API, where an
attacker with the required privileges can read and write to arbitrary locations
within the memory context of the IPMI server process, which may lead to code
execution, denial of service, information disclosure, or data tampering.
0
Attacker Value
Unknown
CVE-2023-28863
Disclosure Date: April 18, 2023 (last updated February 24, 2025)
AMI MegaRAC SPx12 and SPx13 devices have Insufficient Verification of Data Authenticity.
0
Attacker Value
Unknown
CVE-2023-25192
Disclosure Date: February 15, 2023 (last updated February 24, 2025)
AMI MegaRAC SPX devices allow User Enumeration through Redfish. The fixed versions are SPx12-update-7.00 and SPx13-update-5.00.
0
Attacker Value
Unknown
CVE-2023-25191
Disclosure Date: February 15, 2023 (last updated February 24, 2025)
AMI MegaRAC SPX devices allow Password Disclosure through Redfish. The fixed versions are SPx_12-update-7.00 and SPx_13-update-5.00.
0
Attacker Value
Unknown
CVE-2022-26872
Disclosure Date: January 30, 2023 (last updated February 24, 2025)
AMI Megarac Password reset interception via API
0
Attacker Value
Unknown
CVE-2022-40259
Disclosure Date: December 05, 2022 (last updated February 24, 2025)
MegaRAC Default Credentials Vulnerability
0
Attacker Value
Unknown
CVE-2022-40242
Disclosure Date: December 05, 2022 (last updated February 24, 2025)
MegaRAC Default Credentials Vulnerability
0
Attacker Value
Unknown
CVE-2022-2827
Disclosure Date: December 05, 2022 (last updated February 24, 2025)
AMI MegaRAC User Enumeration Vulnerability
0
