Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bmc vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-3411
Implementations of IPMI Authenticated sessions does not provide enough randomness to protect from session hijacking, allowing an malicious user to use either predictable IPMI Session ID or weak BMC Random Number to bypass security controls using spoofed IPMI packets to manage BMC...
4.3
CVSSv2
CVE-2018-15528
Reflected Cross-Site Scripting exists in the Java System Solutions SSO plugin 4.0.13.1 for BMC MyIT. A remote attacker can abuse this issue to inject client-side scripts into the "select_sso()" function. The payload is triggered when the victim opens a prepared /ux/jss-...
Javasystemsolutions Sso Plugin 4.0.13.1
NA
CVE-2021-35001
This vulnerability allows remote attackers to disclose sensitive information on affected installations of BMC Track-It!. Authentication is required to exploit this vulnerability. The specific flaw exists within the GetData endpoint. The issue results from the lack of authorizatio...
NA
CVE-2021-35002
This vulnerability allows remote attackers to execute arbitrary code on affected installations of BMC Track-It!. Authentication is required to exploit this vulnerability. The specific flaw exists within the processing of email attachments. The issue results from the lack of prope...
5
CVSSv2
CVE-2020-11487
NVIDIA DGX servers, DGX-1 with BMC firmware versions before 3.38.30. DGX-2 with BMC firmware versions before 1.06.06 and all DGX A100 Servers with all BMC firmware versions, contains a vulnerability in the AMI BMC firmware in which the use of a hard-coded RSA 1024 key with weak c...
Intel Bmc Firmware
4
CVSSv2
CVE-2020-11484
NVIDIA DGX servers, all DGX-1 with BMC firmware versions before 3.38.30, contains a vulnerability in the AMI BMC firmware in which an attacker with administrative privileges can obtain the hash of the BMC/IPMI user password, which may lead to information disclosure.
Intel Bmc Firmware
5
CVSSv2
CVE-2020-11489
NVIDIA DGX servers, all DGX-1 with BMC firmware versions before 3.38.30 and all DGX-2 with BMC firmware versions before 1.06.06, contain a vulnerability in the AMI BMC firmware in which default SNMP community strings are used, which may lead to information disclosure.
Intel Bmc Firmware
7.5
CVSSv2
CVE-2020-11483
NVIDIA DGX servers, all DGX-1 with BMC firmware versions before 3.38.30 and all DGX-2 with BMC firmware versions before 1.06.06, contains a vulnerability in the AMI BMC firmware in which the firmware includes hard-coded credentials, which may lead to elevation of privileges or in...
Intel Bmc Firmware
4.6
CVSSv2
CVE-2020-11488
NVIDIA DGX servers, all DGX-1 with BMC firmware versions before 3.38.30 and all DGX-2 with BMC firmware versions before 1.06.06, contains a vulnerability in the AMI BMC firmware in which software does not validate the RSA 1024 public key used to verify the firmware signature, whi...
Intel Bmc Firmware
NA
CVE-2022-42288
NVIDIA BMC contains a vulnerability in IPMI handler, where an unauthorized attacker can use certain oracles to guess a valid BMC username, which may lead to an information disclosure.
Nvidia Dgx A100 Firmware
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-38002
CVE-2006-4304
CVE-2024-4336
CVE-2024-33437
CVE-2024-4340
CVE-2024-27956
privilege
insecure direct object reference
XSS
item search icon">CVE-2024-25938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »