Intel

Bmc Firmware

17 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.7

CVE-2020-12374

  • EPSS 0.08%
  • Published 19.02.2021 16:15:12
  • Last modified 21.11.2024 04:59:36

Buffer overflow in the BMC firmware for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.47 may allow a privileged user to potentially enable escalation of privilege via local access.

7.8

CVE-2020-12380

  • EPSS 0.06%
  • Published 17.02.2021 14:15:15
  • Last modified 21.11.2024 04:59:36

Out of bounds read in the BMC firmware for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.47 may allow an authenticated user to potentially enable escalation of privilege via local access.

7.8

CVE-2020-12377

  • EPSS 0.06%
  • Published 17.02.2021 14:15:15
  • Last modified 21.11.2024 04:59:36

Insufficient input validation in the BMC firmware for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.47 may allow an authenticated user to potentially enable escalation of privilege via local access.

5.5

CVE-2020-12376

  • EPSS 0.05%
  • Published 17.02.2021 14:15:15
  • Last modified 21.11.2024 04:59:36

Use of hard-coded key in the BMC firmware for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.47 may allow authenticated user to potentially enable information disclosure via local access.

6.7

CVE-2020-12375

  • EPSS 0.07%
  • Published 17.02.2021 14:15:15
  • Last modified 21.11.2024 04:59:36

Heap overflow in the BMC firmware for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.47 may allow an authenticated user to potentially enable escalation of privilege via local access.

6.7

CVE-2020-12373

  • EPSS 0.06%
  • Published 17.02.2021 14:15:15
  • Last modified 21.11.2024 04:59:36

Expired pointer dereference in some Intel(R) Graphics Drivers before version 26.20.100.8141 may allow a privileged user to potentially enable a denial of service via local access.

7.5

CVE-2020-11489

  • EPSS 0.32%
  • Published 29.10.2020 04:15:11
  • Last modified 21.11.2024 04:58:00

NVIDIA DGX servers, all DGX-1 with BMC firmware versions prior to 3.38.30 and all DGX-2 with BMC firmware versions prior to 1.06.06, contain a vulnerability in the AMI BMC firmware in which default SNMP community strings are used, which may lead to i...

7.5

CVE-2020-11616

  • EPSS 0.32%
  • Published 29.10.2020 04:15:11
  • Last modified 21.11.2024 04:58:15

NVIDIA DGX servers, all BMC firmware versions prior to 3.38.30, contain a vulnerability in the AMI BMC firmware in which the Pseudo-Random Number Generator (PRNG) algorithm used in the JSOL package that implements the IPMI protocol is not cryptograph...

7.5

CVE-2020-11615

  • EPSS 0.28%
  • Published 29.10.2020 04:15:11
  • Last modified 21.11.2024 04:58:15

NVIDIA DGX servers, all BMC firmware versions prior to 3.38.30, contain a vulnerability in the AMI BMC firmware in which it uses a hard-coded RC4 cipher key, which may lead to information disclosure.

6.7

CVE-2020-11488

  • EPSS 0.05%
  • Published 29.10.2020 04:15:11
  • Last modified 21.11.2024 04:57:59

NVIDIA DGX servers, all DGX-1 with BMC firmware versions prior to 3.38.30 and all DGX-2 with BMC firmware versions prior to 1.06.06, contains a vulnerability in the AMI BMC firmware in which software does not validate the RSA 1024 public key used to ...