Vulnerabilities > Intel > Baseboard Management Controller Firmware > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-06-09 | CVE-2020-24473 | Out-of-bounds Write vulnerability in Intel Baseboard Management Controller Firmware 2.09/2.18 Out of bounds write in the BMC firmware for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.48.ce3e3bd2 may allow an authenticated user to potentially enable escalation of privilege via local access. | 7.8 |
| 2021-06-09 | CVE-2020-24474 | Classic Buffer Overflow vulnerability in Intel Baseboard Management Controller Firmware 2.09/2.18 Buffer overflow in the BMC firmware for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.48.ce3e3bd2 may allow an authenticated user to potentially enable escalation of privilege via adjacent access. | 8.0 |
| 2019-11-14 | CVE-2019-11182 | Out-of-bounds Write vulnerability in Intel Baseboard Management Controller Firmware 2.09 Memory corruption in Intel(R) Baseboard Management Controller firmware may allow an unauthenticated user to potentially enable denial of service via network access. | 7.5 |
| 2019-11-14 | CVE-2019-11181 | Out-of-bounds Read vulnerability in Intel Baseboard Management Controller Firmware 2.09 Out of bound read in Intel(R) Baseboard Management Controller firmware may allow an unauthenticated user to potentially enable escalation of privilege via network access. | 7.8 |
| 2019-11-14 | CVE-2019-11180 | Improper Input Validation vulnerability in Intel Baseboard Management Controller Firmware 2.09 Insufficient input validation in Intel(R) Baseboard Management Controller firmware may allow an unauthenticated user to potentially enable denial of service via network access. | 7.5 |
| 2019-11-14 | CVE-2019-11178 | Classic Buffer Overflow vulnerability in Intel Baseboard Management Controller Firmware 2.09 Stack overflow in Intel(R) Baseboard Management Controller firmware may allow an authenticated user to potentially enable information disclosure and/or denial of service via network access. | 8.1 |
| 2019-11-14 | CVE-2019-11177 | Improper Handling of Exceptional Conditions vulnerability in Intel Baseboard Management Controller Firmware 2.09 Unhandled exception in Intel(R) Baseboard Management Controller firmware may allow an unauthenticated user to potentially enable denial of service via network access. | 7.5 |
| 2019-11-14 | CVE-2019-11175 | Improper Input Validation vulnerability in Intel Baseboard Management Controller Firmware 2.09 Insufficient input validation in Intel(R) Baseboard Management Controller firmware may allow an unauthenticated user to potentially enable denial of service via network access. | 7.5 |
| 2019-11-14 | CVE-2019-11173 | Unspecified vulnerability in Intel Baseboard Management Controller Firmware 2.09 Insufficient session validation in Intel(R) Baseboard Management Controller firmware may allow an unauthenticated user to potentially enable information disclosure and/or denial of service via local access. | 7.1 |
| 2019-11-14 | CVE-2019-11170 | Improper Authentication vulnerability in Intel Baseboard Management Controller Firmware 2.09 Authentication bypass in Intel(R) Baseboard Management Controller firmware may allow an unauthenticated user to potentially enable information disclosure, escalation of privilege and/or denial of service via local access. | 7.8 |