Vulnerabilities > AMI > Megarac SPX > Critical

DATE CVE VULNERABILITY TITLE RISK
2023-06-12 CVE-2023-34335 Missing Authentication for Critical Function vulnerability in AMI Megarac SPX 12.0/13.0
AMI BMC contains a vulnerability in the IPMI handler, where an unauthenticated host is allowed to write to a host SPI flash, bypassing secure boot protections.
network
low complexity
ami CWE-306
critical
9.1