- EPSS 0.04%
- Published 23.09.2025 22:15:33
- Last modified 24.09.2025 18:11:24
Improper input validation in Satellite Management Controller (SMC) may allow an attacker with privileges to use certain special characters in manipulated Redfish® API commands, causing service processes like OpenBMC to crash and reset, potentially re...
- EPSS 0.03%
- Published 23.09.2025 22:15:33
- Last modified 24.09.2025 18:11:24
Improper input validation in Satellite Management Controller (SMC) may allow an attacker with privileges to manipulate Redfish® API commands to remove files from the local root directory, potentially resulting in data corruption.
CVE-2025-0034
- EPSS 0.02%
- Published 06.09.2025 18:35:44
- Last modified 08.09.2025 16:25:38
Insufficient parameter sanitization in TEE SOC Driver could allow an attacker to issue a malformed DRV_SOC_CMD_ID_SRIOV_SPATIAL_PART and cause read or write past the end of allocated arrays, potentially resulting in a loss of platform integrity or de...
CVE-2025-0010
- EPSS 0.02%
- Published 06.09.2025 18:26:15
- Last modified 08.09.2025 16:25:38
An out of bounds write in the Linux graphics driver could allow an attacker to overflow the buffer potentially resulting in loss of confidentiality, integrity, or availability.
- EPSS 0.02%
- Published 06.09.2025 17:43:14
- Last modified 08.09.2025 16:25:38
Improper input validation in AMD Power Management Firmware (PMFW) could allow a privileged attacker from Guest VM to send arbitrary input data potentially causing a GPU Reset condition.
- EPSS 0.03%
- Published 12.02.2025 00:15:07
- Last modified 12.02.2025 00:15:07
Improper access control in the ASP could allow a privileged attacker to perform an out-of-bounds write to a memory location not controlled by the attacker, potentially leading to loss of confidentiality, integrity, or availability.