Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Intel Subscribe
Filtered by product Bmc Firmware

CVSS v3 Filter

ALL
NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 6 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-11484 2 Intel, Nvidia 2 Bmc Firmware, Dgx-1 2021-07-21 4.0 MEDIUM 4.9 MEDIUM
NVIDIA DGX servers, all DGX-1 with BMC firmware versions prior to 3.38.30, contains a vulnerability in the AMI BMC firmware in which an attacker with administrative privileges can obtain the hash of the BMC/IPMI user password, which may lead to information disclosure.
CVE-2020-12373 1 Intel 48 Bmc Firmware, Hns2600bpb, Hns2600bpb24 and 45 more 2021-07-21 4.6 MEDIUM 6.7 MEDIUM
Expired pointer dereference in some Intel(R) Graphics Drivers before version 26.20.100.8141 may allow a privileged user to potentially enable a denial of service via local access.
CVE-2020-12376 1 Intel 48 Bmc Firmware, Hns2600bpb, Hns2600bpb24 and 45 more 2021-02-22 2.1 LOW 5.5 MEDIUM
Use of hard-coded key in the BMC firmware for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.47 may allow authenticated user to potentially enable information disclosure via local access.
CVE-2020-12375 1 Intel 48 Bmc Firmware, Hns2600bpb, Hns2600bpb24 and 45 more 2021-02-22 4.6 MEDIUM 6.7 MEDIUM
Heap overflow in the BMC firmware for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.47 may allow an authenticated user to potentially enable escalation of privilege via local access.
CVE-2020-12374 1 Intel 48 Bmc Firmware, Hns2600bpb, Hns2600bpb24 and 45 more 2021-02-22 4.6 MEDIUM 6.7 MEDIUM
Buffer overflow in the BMC firmware for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.47 may allow a privileged user to potentially enable escalation of privilege via local access.
CVE-2020-11488 2 Intel, Nvidia 3 Bmc Firmware, Dgx-1, Dgx-2 2020-11-05 4.6 MEDIUM 6.7 MEDIUM
NVIDIA DGX servers, all DGX-1 with BMC firmware versions prior to 3.38.30 and all DGX-2 with BMC firmware versions prior to 1.06.06, contains a vulnerability in the AMI BMC firmware in which software does not validate the RSA 1024 public key used to verify the firmware signature, which may lead to information disclosure or code execution.