Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bmc vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-3411
Implementations of IPMI Authenticated sessions does not provide enough randomness to protect from session hijacking, allowing an malicious user to use either predictable IPMI Session ID or weak BMC Random Number to bypass security controls using spoofed IPMI packets to manage BMC...
6.1
CVSSv3
CVE-2018-15528
Reflected Cross-Site Scripting exists in the Java System Solutions SSO plugin 4.0.13.1 for BMC MyIT. A remote attacker can abuse this issue to inject client-side scripts into the "select_sso()" function. The payload is triggered when the victim opens a prepared /ux/jss-...
Javasystemsolutions Sso Plugin 4.0.13.1
NA
CVE-2021-35001
BMC Track-It! GetData Missing Authorization Information Disclosure Vulnerability. This vulnerability allows remote malicious users to disclose sensitive information on affected installations of BMC Track-It!. Authentication is required to exploit this vulnerability. The specific ...
NA
CVE-2021-35002
BMC Track-It! Unrestricted File Upload Remote Code Execution Vulnerability. This vulnerability allows remote malicious users to execute arbitrary code on affected installations of BMC Track-It!. Authentication is required to exploit this vulnerability. The specific flaw exists wi...
7.5
CVSSv3
CVE-2020-11487
NVIDIA DGX servers, DGX-1 with BMC firmware versions before 3.38.30. DGX-2 with BMC firmware versions before 1.06.06 and all DGX A100 Servers with all BMC firmware versions, contains a vulnerability in the AMI BMC firmware in which the use of a hard-coded RSA 1024 key with weak c...
Intel Bmc Firmware
4.9
CVSSv3
CVE-2020-11484
NVIDIA DGX servers, all DGX-1 with BMC firmware versions before 3.38.30, contains a vulnerability in the AMI BMC firmware in which an attacker with administrative privileges can obtain the hash of the BMC/IPMI user password, which may lead to information disclosure.
Intel Bmc Firmware
7.5
CVSSv3
CVE-2020-11489
NVIDIA DGX servers, all DGX-1 with BMC firmware versions before 3.38.30 and all DGX-2 with BMC firmware versions before 1.06.06, contain a vulnerability in the AMI BMC firmware in which default SNMP community strings are used, which may lead to information disclosure.
Intel Bmc Firmware
9.8
CVSSv3
CVE-2020-11483
NVIDIA DGX servers, all DGX-1 with BMC firmware versions before 3.38.30 and all DGX-2 with BMC firmware versions before 1.06.06, contains a vulnerability in the AMI BMC firmware in which the firmware includes hard-coded credentials, which may lead to elevation of privileges or in...
Intel Bmc Firmware
6.7
CVSSv3
CVE-2020-11488
NVIDIA DGX servers, all DGX-1 with BMC firmware versions before 3.38.30 and all DGX-2 with BMC firmware versions before 1.06.06, contains a vulnerability in the AMI BMC firmware in which software does not validate the RSA 1024 public key used to verify the firmware signature, whi...
Intel Bmc Firmware
5.3
CVSSv3
CVE-2022-42288
NVIDIA BMC contains a vulnerability in IPMI handler, where an unauthorized attacker can use certain oracles to guess a valid BMC username, which may lead to an information disclosure.
Nvidia Dgx A100 Firmware
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »