Vulnerabilities > Intel > Baseboard Management Controller Firmware > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-02-16 CVE-2022-29493 Improper Handling of Exceptional Conditions vulnerability in Intel Baseboard Management Controller Firmware
Uncaught exception in webserver for the Integrated BMC in some Intel(R) platforms before versions 2.86, 2.09 and 2.78 may allow a privileged user to potentially enable denial of service via network access.
network
low complexity
intel CWE-755
4.9
2021-06-09 CVE-2020-24475 Improper Initialization vulnerability in Intel Baseboard Management Controller Firmware 2.09/2.18
Improper initialization in the BMC firmware for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.48.ce3e3bd2 may allow an authenticated user to potentially enable denial of service via local access.
local
low complexity
intel CWE-665
5.5
2019-11-14 CVE-2019-11179 Improper Input Validation vulnerability in Intel Baseboard Management Controller Firmware 2.09
Insufficient input validation in Intel(R) Baseboard Management Controller firmware may allow an authenticated user to potentially enable information disclosure via network access.
network
low complexity
intel CWE-20
6.5
2019-11-14 CVE-2019-11174 Unspecified vulnerability in Intel Baseboard Management Controller Firmware 2.09
Insufficient access control in Intel(R) Baseboard Management Controller firmware may allow an unauthenticated user to potentially enable information disclosure via network access.
network
low complexity
intel
5.3
2019-11-14 CVE-2019-11172 Out-of-bounds Read vulnerability in Intel Baseboard Management Controller Firmware 2.09
Out of bound read in Intel(R) Baseboard Management Controller firmware may allow an unauthenticated user to potentially enable information disclosure via network access.
network
low complexity
intel CWE-125
5.3