Описание
AMI BMC contains a vulnerability in the SPX REST API, where an attacker with the required privileges can read and write to arbitrary locations within the memory context of the IPMI server process, which may lead to code execution, denial of service, information disclosure, or data tampering.
Уязвимые конфигурации
Конфигурация 1Версия от 12.0 (включая) до 12.7 (исключая)Версия от 13.0 (включая) до 13.5 (исключая)
Одно из
cpe:2.3:a:ami:megarac_sp-x:*:*:*:*:*:*:*:*
cpe:2.3:a:ami:megarac_sp-x:*:*:*:*:*:*:*:*
EPSS
Процентиль: 39%
0.00173
Низкий
7.2 High
CVSS3
8.8 High
CVSS3
Дефекты
CWE-119
CWE-119
Связанные уязвимости
CVSS3: 7.2
github
больше 2 лет назад
AMI BMC contains a vulnerability in the SPX REST API, where an attacker with the required privileges can read and write to arbitrary locations within the memory context of the IPMI server process, which may lead to code execution, denial of service, information disclosure, or data tampering.
EPSS
Процентиль: 39%
0.00173
Низкий
7.2 High
CVSS3
8.8 High
CVSS3
Дефекты
CWE-119
CWE-119