Intel Baseboard_management_controller_firmware
17 CVEs affecting Intel Baseboard_management_controller_firmware. Latest disclosed: 2023-02-16. Critical: 2, High: 10.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2019-11171 | Critical | 9.8 | 2019-11-14 | Heap corruption in Intel(R) Baseboard Management Controller firmware may allow an unauthenticated user to potentially enable information disclosure, escalation… |
CVE-2019-11168 | Critical | 9.1 | 2019-11-14 | Insufficient session validation in Intel(R) Baseboard Management Controller firmware may allow an unauthenticated user to potentially enable information disclo… |
CVE-2019-11178 | High | 8.1 | 2019-11-14 | Stack overflow in Intel(R) Baseboard Management Controller firmware may allow an authenticated user to potentially enable information disclosure and/or denial… |
CVE-2020-24474 | High | 8.0 | 2021-06-09 | Buffer overflow in the BMC firmware for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.48.ce3e3bd2 may allow an authenticated… |
CVE-2020-24473 | High | 7.8 | 2021-06-09 | Out of bounds write in the BMC firmware for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.48.ce3e3bd2 may allow an authentic… |
CVE-2019-11181 | High | 7.8 | 2019-11-14 | Out of bound read in Intel(R) Baseboard Management Controller firmware may allow an unauthenticated user to potentially enable escalation of privilege via netw… |
CVE-2019-11170 | High | 7.8 | 2019-11-14 | Authentication bypass in Intel(R) Baseboard Management Controller firmware may allow an unauthenticated user to potentially enable information disclosure, esca… |
CVE-2019-11182 | High | 7.5 | 2019-11-14 | Memory corruption in Intel(R) Baseboard Management Controller firmware may allow an unauthenticated user to potentially enable denial of service via network ac… |
CVE-2019-11180 | High | 7.5 | 2019-11-14 | Insufficient input validation in Intel(R) Baseboard Management Controller firmware may allow an unauthenticated user to potentially enable denial of service vi… |
CVE-2019-11177 | High | 7.5 | 2019-11-14 | Unhandled exception in Intel(R) Baseboard Management Controller firmware may allow an unauthenticated user to potentially enable denial of service via network… |
CVE-2019-11175 | High | 7.5 | 2019-11-14 | Insufficient input validation in Intel(R) Baseboard Management Controller firmware may allow an unauthenticated user to potentially enable denial of service vi… |
CVE-2019-11173 | High | 7.1 | 2019-11-14 | Insufficient session validation in Intel(R) Baseboard Management Controller firmware may allow an unauthenticated user to potentially enable information disclo… |
CVE-2019-11179 | Medium | 6.5 | 2019-11-14 | Insufficient input validation in Intel(R) Baseboard Management Controller firmware may allow an authenticated user to potentially enable information disclosure… |
CVE-2020-24475 | Medium | 5.5 | 2021-06-09 | Improper initialization in the BMC firmware for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.48.ce3e3bd2 may allow an authe… |
CVE-2019-11174 | Medium | 5.3 | 2019-11-14 | Insufficient access control in Intel(R) Baseboard Management Controller firmware may allow an unauthenticated user to potentially enable information disclosure… |
CVE-2019-11172 | Medium | 5.3 | 2019-11-14 | Out of bound read in Intel(R) Baseboard Management Controller firmware may allow an unauthenticated user to potentially enable information disclosure via netwo… |
CVE-2022-29493 | Medium | 4.5 | 2023-02-16 | Uncaught exception in webserver for the Integrated BMC in some Intel(R) platforms before versions 2.86, 2.09 and 2.78 may allow a privileged user to potentiall… |