Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

ami megarac sp-x 12 vulnerabilities and exploits

(subscribe to this query)
9.8
CVSSv3
CVE-2022-40259
MegaRAC Default Credentials Vulnerability
Ami Megarac Sp-x 13Ami Megarac Sp-x 12
8.8
CVSSv3
CVE-2022-26872
AMI Megarac Password reset interception via API
Ami Megarac Sp-x 12Ami Megarac Sp-x 13
9.8
CVSSv3
CVE-2022-40242
MegaRAC Default Credentials Vulnerability
Ami Megarac Sp-x 13Ami Megarac Sp-x 12
5.3
CVSSv3
CVE-2023-25192
AMI MegaRAC SPX devices allow User Enumeration through Redfish. The fixed versions are SPx12-update-7.00 and SPx13-update-5.00.
Ami Megarac Sp-x 12Ami Megarac Sp-x 13
7.5
CVSSv3
CVE-2023-25191
AMI MegaRAC SPX devices allow Password Disclosure through Redfish. The fixed versions are SPx_12-update-7.00 and SPx_13-update-5.00.
Ami Megarac Sp-x 12Ami Megarac Sp-x 13
8
CVSSv3
CVE-2023-34329
AMI MegaRAC SPx12 contains a vulnerability in BMC where a User may cause an authentication bypass by spoofing the HTTP header. A successful exploit of this vulnerability may lead to loss of confidentiality, integrity, and availability.
Ami Megarac Sp-x 12Ami Megarac Sp-x 13
8.8
CVSSv3
CVE-2023-34330
AMI SPx contains a vulnerability in the BMC where a user may inject code which could be executed via a Dynamic Redfish Extension interface. A successful exploit of this vulnerability may lead to a loss of confidentiality, integrity, and availability.
Ami Megarac Sp-x 12Ami Megarac Sp-x 13
8.8
CVSSv3
CVE-2023-34337
AMI SPx contains a vulnerability in the BMC where a user may cause an inadequate encryption strength by hash-based message authentication code (HMAC). A successful exploit of this vulnerability may lead to a loss of confidentiality, integrity, and availability.
Ami Megarac Sp-x 12Ami Megarac Sp-x 13
9.8
CVSSv3
CVE-2023-34338
AMI SPx contains a vulnerability in the BMC where an Attacker may cause a use of hard-coded cryptographic key by a hard-coded certificate. A successful exploit of this vulnerability may lead to a loss of confidentiality, integrity, and availability.
Ami Megarac Sp-x 12Ami Megarac Sp-x 13
8.1
CVSSv3
CVE-2023-34471
AMI SPx contains a vulnerability in the BMC where a user may cause a missing cryptographic step by generating a hash-based message authentication code (HMAC). A successful exploit of this vulnerability may lead to the loss confidentiality, integrity, and authentication.
Ami Megarac Sp-x 12Ami Megarac Sp-x 13
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48654CVE-2024-2757authentication bypassCVE-2024-3194CVE-2024-33640CVE-2024-21111dosinsecure direct object referenceCVE-2024-21345
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook