Filtered by vendor Ami Subscriptions
Filtered by product Megarac Sp-x Subscriptions

Search

Switch to Advanced Search (Beta)
Total 29 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2023-34337 1 Ami 1 Megarac Sp-x 2024-11-21 7.6 High
AMI SPx contains a vulnerability in the BMC where a user may cause an inadequate encryption strength by hash-based message authentication code (HMAC). A successful exploit of this vulnerability may lead to a loss of confidentiality, integrity, and availability.
CVE-2023-34333 1 Ami 1 Megarac Sp-x 2024-11-21 7.8 High
AMI’s SPx contains a vulnerability in the BMC where an Attacker may cause an untrusted pointer to dereference via a local network. A successful exploitation of this vulnerability may lead to a loss of confidentiality, integrity, and/or availability.
CVE-2023-34332 1 Ami 1 Megarac Sp-x 2024-11-21 7.8 High
AMI’s SPx contains a vulnerability in the BMC where an Attacker may cause an untrusted pointer to dereference by a local network. A successful exploitation of this vulnerability may lead to a loss of confidentiality, integrity, and/or availability.
CVE-2023-28863 1 Ami 1 Megarac Sp-x 2024-11-21 9.1 Critical
AMI MegaRAC SPx12 and SPx13 devices have Insufficient Verification of Data Authenticity.
CVE-2023-25192 1 Ami 1 Megarac Sp-x 2024-11-21 5.3 Medium
AMI MegaRAC SPX devices allow User Enumeration through Redfish. The fixed versions are SPx12-update-7.00 and SPx13-update-5.00.
CVE-2023-25191 1 Ami 1 Megarac Sp-x 2024-11-21 7.5 High
AMI MegaRAC SPX devices allow Password Disclosure through Redfish. The fixed versions are SPx_12-update-7.00 and SPx_13-update-5.00.
CVE-2022-40259 1 Ami 1 Megarac Sp-x 2024-11-21 8.3 High
MegaRAC Default Credentials Vulnerability
CVE-2022-40242 1 Ami 1 Megarac Sp-x 2024-11-21 7.5 High
MegaRAC Default Credentials Vulnerability
CVE-2022-2827 1 Ami 1 Megarac Sp-x 2024-11-21 7.5 High
AMI MegaRAC User Enumeration Vulnerability