Vulnerabilities > AMI > High

DATE CVE VULNERABILITY TITLE RISK
2024-01-09 CVE-2023-34332 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in AMI Megarac Sp-X 12/13
AMI’s SPx contains a vulnerability in the BMC where an Attacker may cause an untrusted pointer to dereference by a local network.
local
low complexity
ami CWE-119
7.8
7.8
2024-01-09 CVE-2023-34333 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in AMI Megarac Sp-X 12/13
AMI’s SPx contains a vulnerability in the BMC where an Attacker may cause an untrusted pointer to dereference via a local network.
local
low complexity
ami CWE-119
7.8
7.8
2024-01-09 CVE-2023-37293 Out-of-bounds Write vulnerability in AMI Megarac Sp-X 12/13
AMI’s SPx contains a vulnerability in the BMC where an Attacker may cause a stack-based buffer overflow via an adjacent network.
low complexity
ami CWE-787
8.8
8.8
2024-01-09 CVE-2023-37294 Out-of-bounds Write vulnerability in AMI Megarac Sp-X 12/13
AMI’s SPx contains a vulnerability in the BMC where an Attacker may cause a heap memory corruption via an adjacent network.
low complexity
ami CWE-787
8.8
8.8
2024-01-09 CVE-2023-37295 Out-of-bounds Write vulnerability in AMI Megarac Sp-X 12/13
AMI’s SPx contains a vulnerability in the BMC where an Attacker may cause a heap memory corruption via an adjacent network.
low complexity
ami CWE-787
8.8
8.8
2024-01-09 CVE-2023-37296 Out-of-bounds Write vulnerability in AMI Megarac Sp-X 12/13
AMI’s SPx contains a vulnerability in the BMC where an Attacker may cause a stack memory corruption via an adjacent network.
low complexity
ami CWE-787
8.8
8.8
2024-01-09 CVE-2023-37297 Out-of-bounds Write vulnerability in AMI Megarac Sp-X 12/13
AMI’s SPx contains a vulnerability in the BMC where an Attacker may cause a heap memory corruption via an adjacent network.
low complexity
ami CWE-787
8.8
8.8
2024-01-09 CVE-2023-3043 Out-of-bounds Write vulnerability in AMI Megarac Sp-X 12/13
AMI’s SPx contains a vulnerability in the BMC where an Attacker may cause a stack-based buffer overflow via an adjacent network.
low complexity
ami CWE-787
8.8
8.8
2023-12-06 CVE-2023-39538 Unrestricted Upload of File with Dangerous Type vulnerability in AMI Aptio V
AMI AptioV contains a vulnerability in BIOS where a User may cause an unrestricted upload of a BMP Logo file with dangerous type by Local access.
local
low complexity
ami CWE-434
7.8
7.8
2023-12-06 CVE-2023-39539 Unrestricted Upload of File with Dangerous Type vulnerability in AMI Aptio V
AMI AptioV contains a vulnerability in BIOS where a User may cause an unrestricted upload of a PNG Logo file with dangerous type by Local access.
local
low complexity
ami CWE-434
7.8
7.8