Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bmc vulnerabilities and exploits
(subscribe to this query)
5.8
CVSSv2
CVE-2021-0101
Buffer overflow in the BMC firmware for Intel(R) Server BoardM10JNP2SB before version EFI BIOS 7215, BMC 8100.01.08 may allow an unauthenticated user to potentially enable an escalation of privilege via adjacent access.
Intel Efi Bios 7215
5.8
CVSSv2
CVE-2012-4074
The Board Management Controller (BMC) in the Serial over LAN (SoL) subsystem in Cisco Unified Computing System (UCS) relies on a hardcoded private key, which allows man-in-the-middle malicious users to obtain sensitive information or modify the data stream by leveraging knowledge...
Cisco Unified Computing System -
5.5
CVSSv2
CVE-2019-11216
BMC Smart Reporting 7.3 20180418 allows authenticated XXE within the import functionality. One can import a malicious XML file and perform XXE attacks to download local files from the server, or do DoS attacks with XML expansion attacks. XXE with direct response and XXE OOB are a...
Bmc Remedy Smart Reporting
5.4
CVSSv2
CVE-2007-0661
Intel Enterprise Southbridge 2 Baseboard Management Controller (BMC), Intel Server Boards 5000XAL, S5000PAL, S5000PSL, S5000XVN, S5000VCL, S5000VSA, SC5400RA, and OEM Firmware for Intel Enterprise Southbridge Baseboard Management Controller prior to 20070119, when Intelligent Pla...
Intel Server Board S5000vsa
Intel Server Board S5000xal
Intel Enterprise Southbridge 2 Bmc
Intel Server Board S5000xvn
Intel Server Board Sc5400ra
Intel Enterprise Southbridge Bmc
Intel Server Board S5000pal
Intel Server Board S5000psl
Intel Server Board S5000vcl
5.2
CVSSv2
CVE-2020-24474
Buffer overflow in the BMC firmware for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.48.ce3e3bd2 may allow an authenticated user to potentially enable escalation of privilege via adjacent access.
Intel Baseboard Management Controller Firmware
5.1
CVSSv2
CVE-2012-2959
Cross-site request forgery (CSRF) vulnerability in password-manager/changePasswords.do in BMC Identity Management Suite 7.5.00.103 allows remote malicious users to hijack the authentication of administrators for requests that change passwords.
Bmc Identity Management Suite 7.5.00.103
1 EDB exploit
5
CVSSv2
CVE-2017-17675
BMC Remedy Mid Tier 9.1SP3 is affected by log hijacking. Remote logging can be accessed by unauthenticated users, allowing for an malicious user to hijack the system logs. This data can include user names and HTTP data.
Bmc Remedy Mid-tier 9.1
5
CVSSv2
CVE-2021-31791
In Hardware Sentry KM prior to 10.0.01 for BMC PATROL, a cleartext password may be discovered after a failure or timeout of a command.
5
CVSSv2
CVE-2020-11489
NVIDIA DGX servers, all DGX-1 with BMC firmware versions before 3.38.30 and all DGX-2 with BMC firmware versions before 1.06.06, contain a vulnerability in the AMI BMC firmware in which default SNMP community strings are used, which may lead to information disclosure.
Intel Bmc Firmware
5
CVSSv2
CVE-2020-11616
NVIDIA DGX servers, all BMC firmware versions before 3.38.30, contain a vulnerability in the AMI BMC firmware in which the Pseudo-Random Number Generator (PRNG) algorithm used in the JSOL package that implements the IPMI protocol is not cryptographically strong, which may lead to...
Intel Bmc Firmware
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »