Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
intel bmc firmware vulnerabilities and exploits
(subscribe to this query)
481
VMScore
CVE-2007-0661
Intel Enterprise Southbridge 2 Baseboard Management Controller (BMC), Intel Server Boards 5000XAL, S5000PAL, S5000PSL, S5000XVN, S5000VCL, S5000VSA, SC5400RA, and OEM Firmware for Intel Enterprise Southbridge Baseboard Management Controller prior to 20070119, when Intelligent Pla...
Intel Server Board S5000vsa
Intel Server Board S5000xal
Intel Enterprise Southbridge 2 Bmc
Intel Server Board S5000xvn
Intel Server Board Sc5400ra
Intel Enterprise Southbridge Bmc
Intel Server Board S5000pal
Intel Server Board S5000psl
Intel Server Board S5000vcl
785
VMScore
CVE-2013-4786
The IPMI 2.0 specification supports RMCP+ Authenticated Key-Exchange Protocol (RAKP) authentication, which allows remote malicious users to obtain password hashes and conduct offline password guessing attacks by obtaining the HMAC from a RAKP message 2 response from a BMC.
Oracle Fujitsu M10 Firmware
Intel Intelligent Platform Management Interface 2.0
1 EDB exploit
1 Github repository
NA
CVE-2023-28411
Double free in some Intel(R) Server Board BMC firmware before version 2.90 may allow a privileged user to enable information disclosure via local access.
Intel Server System D50tnp1mhcrlc Firmware
Intel Server System D50tnp1mhcpac Firmware
Intel Server System D50tnp2mhsvac Firmware
Intel Server System D50tnp2mhstac Firmware
Intel Server System D50tnp1mhcrac Firmware
Intel Server System D50tnp2mfalac Firmware
Intel Server System M50cyp1ur204 Firmware
Intel Server System M50cyp1ur212 Firmware
Intel Server System M50cyp2ur312 Firmware
Intel Server System M50cyp2ur208 Firmware
NA
CVE-2023-25175
Improper input validation in some Intel(R) Server Board BMC firmware before version 2.90 may allow a privileged user to enable information disclosure via local access.
Intel Server System D50tnp1mhcrlc Firmware
Intel Server System D50tnp1mhcpac Firmware
Intel Server System D50tnp2mhsvac Firmware
Intel Server System D50tnp2mhstac Firmware
Intel Server System D50tnp1mhcrac Firmware
Intel Server System D50tnp2mfalac Firmware
Intel Server System M50cyp1ur204 Firmware
Intel Server System M50cyp1ur212 Firmware
Intel Server System M50cyp2ur312 Firmware
Intel Server System M50cyp2ur208 Firmware
NA
CVE-2023-22379
Improper input validation in some Intel(R) Server Board BMC firmware before version 2.90 may allow a privileged user to enable information disclosure via local access.
Intel Server System D50tnp1mhcrlc Firmware
Intel Server System D50tnp1mhcpac Firmware
Intel Server System D50tnp2mhsvac Firmware
Intel Server System D50tnp2mhstac Firmware
Intel Server System D50tnp1mhcrac Firmware
Intel Server System D50tnp2mfalac Firmware
Intel Server System M50cyp1ur204 Firmware
Intel Server System M50cyp1ur212 Firmware
Intel Server System M50cyp2ur312 Firmware
Intel Server System M50cyp2ur208 Firmware
NA
CVE-2023-25776
Improper input validation in some Intel(R) Server Board BMC firmware before version 2.90 may allow a privileged user to enable information disclosure via local access.
Intel Server System D50tnp1mhcrlc Firmware
Intel Server System D50tnp1mhcpac Firmware
Intel Server System D50tnp2mhsvac Firmware
Intel Server System D50tnp2mhstac Firmware
Intel Server System D50tnp1mhcrac Firmware
Intel Server System D50tnp2mfalac Firmware
Intel Server System M50cyp1ur204 Firmware
Intel Server System M50cyp1ur212 Firmware
Intel Server System M50cyp2ur312 Firmware
Intel Server System M50cyp2ur208 Firmware
NA
CVE-2023-22443
Integer overflow in some Intel(R) Server Board BMC firmware before version 2.90 may allow a privileged user to enable denial of service via local access.
Intel Server System D50tnp1mhcrlc Firmware
Intel Server System D50tnp1mhcpac Firmware
Intel Server System D50tnp2mhsvac Firmware
Intel Server System D50tnp2mhstac Firmware
Intel Server System D50tnp1mhcrac Firmware
Intel Server System D50tnp2mfalac Firmware
Intel Server System M50cyp1ur204 Firmware
Intel Server System M50cyp1ur212 Firmware
Intel Server System M50cyp2ur312 Firmware
Intel Server System M50cyp2ur208 Firmware
NA
CVE-2023-22661
Buffer overflow in some Intel(R) Server Board BMC firmware before version 2.90 may allow a privileged user to enable escalation of privilege via local access.
Intel Server System D50tnp1mhcrlc Firmware
Intel Server System D50tnp1mhcpac Firmware
Intel Server System D50tnp2mhsvac Firmware
Intel Server System D50tnp2mhstac Firmware
Intel Server System D50tnp1mhcrac Firmware
Intel Server System D50tnp2mfalac Firmware
Intel Server System M50cyp1ur204 Firmware
Intel Server System M50cyp1ur212 Firmware
Intel Server System M50cyp2ur312 Firmware
Intel Server System M50cyp2ur208 Firmware
NA
CVE-2023-25545
Improper buffer restrictions in some Intel(R) Server Board BMC firmware before version 2.90 may allow a privileged user to enable escalation of privilege via local access.
Intel Server System D50tnp1mhcrlc Firmware
Intel Server System D50tnp1mhcpac Firmware
Intel Server System D50tnp2mhsvac Firmware
Intel Server System D50tnp2mhstac Firmware
Intel Server System D50tnp1mhcrac Firmware
Intel Server System D50tnp2mfalac Firmware
Intel Server System M50cyp1ur204 Firmware
Intel Server System M50cyp1ur212 Firmware
Intel Server System M50cyp2ur312 Firmware
Intel Server System M50cyp2ur208 Firmware
NA
CVE-2023-24475
Out of bounds read in some Intel(R) Server Board BMC firmware before version 2.90 may allow a privileged user to enable information disclosure via local access.
Intel Server System D50tnp1mhcrlc Firmware
Intel Server System D50tnp1mhcpac Firmware
Intel Server System D50tnp2mhsvac Firmware
Intel Server System D50tnp2mhstac Firmware
Intel Server System D50tnp1mhcrac Firmware
Intel Server System D50tnp2mfalac Firmware
Intel Server System M50cyp1ur204 Firmware
Intel Server System M50cyp1ur212 Firmware
Intel Server System M50cyp2ur312 Firmware
Intel Server System M50cyp2ur208 Firmware
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »