What is CVE-2023-34342?

CVE-2023-34342 is a medium-severity vulnerability in Ami Megarac_spx, classified under Path Traversal. CVSS score: 6.0/10. Published 2023-06-12.

How severe is CVE-2023-34342?

Medium severity. CVSS v3 base score is 6.0 out of 10.

Path Traversal in Ami Megarac_spx

CVE-2023-34342

AMI BMC contains a vulnerability in the IPMI handler, where an attacker can upload and download arbitrary files under certain circumstances, which may lead to denial of service, escalation of privileges, information disclosure, or data tam…

Vulnerability class: Path Traversal (Directory Traversal)

EPSS: 0.002 (43.7th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 6.0 (Medium). Vector: CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N.

Affected products

Ami Megarac_spx — versions 12.0, 13.0

Weakness classification (CWE)

CWE-22 — Path Traversal

References

9443417.fs1.hubspotusercontent-na1.net/hubfs/9443417/Security Advisories/AMI-SA…

Frequently asked questions

What is CVE-2023-34342?: CVE-2023-34342 is a medium-severity vulnerability in Ami Megarac_spx, classified under Path Traversal. CVSS score: 6.0/10. Published 2023-06-12.
How severe is CVE-2023-34342?: Medium severity. CVSS v3 base score is 6.0 out of 10.