VYPR

SPx

by Ami

CVEs (15)

  • CVE-2024-54085CriKEVMar 11, 2025
    risk 0.81cvss 9.8epss 0.61

    AMI’s SPx contains a vulnerability in the BMC where an Attacker may bypass authentication remotely through the Redfish Host Interface. A successful exploitation of this vulnerability may lead to a loss of confidentiality, integrity, and/or availability.

  • CVE-2023-3043CriJan 9, 2024
    risk 0.62cvss 9.6epss 0.00

    AMI’s SPx contains a vulnerability in the BMC where an Attacker may cause a stack-based buffer overflow via an adjacent network. A successful exploitation of this vulnerability may lead to a loss of confidentiality, integrity, and/or availability. …

  • CVE-2023-37293CriJan 9, 2024
    risk 0.62cvss 9.6epss 0.00

    AMI’s SPx contains a vulnerability in the BMC where an Attacker may cause a stack-based buffer overflow via an adjacent network. A successful exploitation of this vulnerability may lead to a loss of confidentiality, integrity, and/or availability.

  • CVE-2023-37297HigJan 9, 2024
    risk 0.54cvss 8.3epss 0.00

    AMI’s SPx contains a vulnerability in the BMC where an Attacker may cause a heap memory corruption via an adjacent network. A successful exploitation of this vulnerability may lead to a loss of confidentiality, integrity, and/or availability.

  • CVE-2023-37296HigJan 9, 2024
    risk 0.54cvss 8.3epss 0.00

    AMI’s SPx contains a vulnerability in the BMC where an Attacker may cause a stack memory corruption via an adjacent network. A successful exploitation of this vulnerability may lead to a loss of confidentiality, integrity, and/or availability.

  • CVE-2023-37295HigJan 9, 2024
    risk 0.54cvss 8.3epss 0.00

    AMI’s SPx contains a vulnerability in the BMC where an Attacker may cause a heap memory corruption via an adjacent network. A successful exploitation of this vulnerability may lead to a loss of confidentiality, integrity, and/or availability. …

  • CVE-2023-37294HigJan 9, 2024
    risk 0.54cvss 8.3epss 0.00

    AMI’s SPx contains a vulnerability in the BMC where an Attacker may cause a heap memory corruption via an adjacent network. A successful exploitation of this vulnerability may lead to a loss of confidentiality, integrity, and/or availability. …

  • CVE-2023-34330HigJul 18, 2023
    risk 0.53cvss 8.2epss 0.01

    AMI SPx contains a vulnerability in the BMC where a user may inject code which could be executed via a Dynamic Redfish Extension interface. A successful exploit of this vulnerability may lead to a loss of confidentiality, integrity, and availability.

  • CVE-2023-34333HigJan 9, 2024
    risk 0.51cvss 7.8epss 0.00

    AMI’s SPx contains a vulnerability in the BMC where an Attacker may cause an untrusted pointer to dereference via a local network. A successful exploitation of this vulnerability may lead to a loss of confidentiality, integrity, and/or availability. …

  • CVE-2023-34332HigJan 9, 2024
    risk 0.51cvss 7.8epss 0.00

    AMI’s SPx contains a vulnerability in the BMC where an Attacker may cause an untrusted pointer to dereference by a local network. A successful exploitation of this vulnerability may lead to a loss of confidentiality, integrity, and/or availability. …

  • CVE-2023-34337HigJul 5, 2023
    risk 0.49cvss 7.6epss 0.00

    AMI SPx contains a vulnerability in the BMC where a user may cause an inadequate encryption strength by hash-based message authentication code (HMAC). A successful exploit of this vulnerability may lead to a loss of confidentiality, integrity, and availability.

  • CVE-2023-34338HigJul 5, 2023
    risk 0.46cvss 7.1epss 0.00

    AMI SPx contains a vulnerability in the BMC where an Attacker may cause a use of hard-coded cryptographic key by a hard-coded certificate. A successful exploit of this vulnerability may lead to a loss of confidentiality, integrity, and availability. 

  • CVE-2023-34473MedJul 5, 2023
    risk 0.43cvss 6.6epss 0.00

    AMI SPx contains a vulnerability in the BMC where a valid user may cause a use of hard-coded credentials. A successful exploit of this vulnerability may lead to a loss of confidentiality, integrity, and availability.

  • CVE-2023-34471MedJul 5, 2023
    risk 0.41cvss 6.3epss 0.00

    AMI SPx contains a vulnerability in the BMC where a user may cause a missing cryptographic step by generating a hash-based message authentication code (HMAC). A successful exploit of this vulnerability may lead to the loss confidentiality, integrity, and authentication.

  • CVE-2023-34472MedJul 5, 2023
    risk 0.37cvss 5.7epss 0.00

    AMI SPx contains a vulnerability in the BMC where an Attacker may cause an improper neutralization of CRLF sequences in HTTP Headers. A successful exploit of this vulnerability may lead to a loss of integrity.