Описание
AMI BMC contains a vulnerability in the SPX REST API, where an attacker with the required privileges can inject arbitrary shell commands, which may lead to code execution, denial of service, information disclosure, or data tampering.
Уязвимые конфигурации
Конфигурация 1Версия от 12.0 (включая) до 12.7 (исключая)Версия от 13.0 (включая) до 13.5 (исключая)
Одно из
cpe:2.3:a:ami:megarac_sp-x:*:*:*:*:*:*:*:*
cpe:2.3:a:ami:megarac_sp-x:*:*:*:*:*:*:*:*
EPSS
Процентиль: 51%
0.00278
Низкий
7.2 High
CVSS3
8.8 High
CVSS3
Дефекты
CWE-78
CWE-78
Связанные уязвимости
CVSS3: 7.2
github
больше 2 лет назад
AMI BMC contains a vulnerability in the SPX REST API, where an attacker with the required privileges can inject arbitrary shell commands, which may lead to code execution, denial of service, information disclosure, or data tampering.
EPSS
Процентиль: 51%
0.00278
Низкий
7.2 High
CVSS3
8.8 High
CVSS3
Дефекты
CWE-78
CWE-78