Ami Megarac Spx Vulnerabilities

Authentication Bypass Vulnerability in AMI’s SPx Management Controller

CVE-2024-54085

AmiMegarac-spx💰👾EPSS 21%🦅📰10CRITICAL

heap memory overflow

CVE-2023-37297

AmiMegarac Spx8.3HIGH

Stack-based Buffer Overflow

CVE-2023-37296

AmiMegarac Spx8.3HIGH

Heap-based Buffer Overflow

CVE-2023-37295

AmiMegarac Spx8.3HIGH

Heap-based Buffer Overflow

CVE-2023-37294

AmiMegarac Spx8.3HIGH

stack-based buffer overflow

CVE-2023-37293

AmiMegarac Spx9.6CRITICAL

Untrusted Pointer Dereference

CVE-2023-34333

AmiMegarac Spx7.8HIGH

Stack-based Buffer Overflow BMC

CVE-2023-3043

AmiMegarac Spx9.6CRITICAL

Untrusted Pointer Dereference in BMC

CVE-2023-34332

AmiMegarac Spx7.8HIGH

Inadequate Encryption Strength

CVE-2023-34337

AmiMegarac Spx7.6HIGH

hard coded cryptographic key

CVE-2023-34338

AmiMegarac Spx7.1HIGH

Missing Cryptographic Step

CVE-2023-34471

AmiMegarac Spx6.3MEDIUM

Improper Neutralization of CRLF Sequences in AMI SPx BMC

CVE-2023-34472

AmiMegarac Spx5.7MEDIUM

Usage of Hard-coded Credentials

CVE-2023-34473

AmiMegarac Spx6.6MEDIUM

Arbitrary Command Injection in AMI BMC via SPX REST API

CVE-2023-34334

AMIMegaRAC_SPx8.8HIGH

IPMI Handler Vulnerability in AMI BMC

CVE-2023-34335

AMIMegaRAC_SPx9.1CRITICAL

Buffer Overflow Vulnerability in AMI BMC IPMI Handler

CVE-2023-34336

AMIMegaRAC_SPx8.8HIGH

Arbitrary File Upload Vulnerability in AMI BMC Software

CVE-2023-34342

AMIMegaRAC_SPx9.1CRITICAL

Command Injection Vulnerability in AMI BMC SPX REST API

CVE-2023-34343

AMIMegaRAC_SPx8.8HIGH

Memory Manipulation Vulnerability in AMI BMC SPX REST API

CVE-2023-34341

AMIMegaRAC_SPx8.8HIGH

A vulnerability in the IPMI handler, where an unauthorized attacker can use certain oracles to guess a valid username

CVE-2023-34344

AMIMegaRAC_SPx5.3MEDIUM

File Access Vulnerability in AMI BMC SPX REST API

CVE-2023-34345

AMIMegaRAC_SPx6.5MEDIUM

Weak password hashes for Redfish & API

CVE-2022-40258

AmiMegarac Spx-125.3MEDIUM

Password reset interception via API

CVE-2022-26872

AmiMegarac Spx-128.3HIGH

ami Megarac Spx Vulnerabilities

Vulnerability Published:

Sort By:

11 March 2025

Authentication Bypass Vulnerability in AMI’s SPx Management Controller

9 January 2024

heap memory overflow

Stack-based Buffer Overflow

Heap-based Buffer Overflow

Heap-based Buffer Overflow

stack-based buffer overflow

Untrusted Pointer Dereference

Stack-based Buffer Overflow BMC

Untrusted Pointer Dereference in BMC

5 July 2023

Inadequate Encryption Strength

hard coded cryptographic key

Missing Cryptographic Step

Improper Neutralization of CRLF Sequences in AMI SPx BMC

Usage of Hard-coded Credentials

12 June 2023

Arbitrary Command Injection in AMI BMC via SPX REST API

IPMI Handler Vulnerability in AMI BMC

Buffer Overflow Vulnerability in AMI BMC IPMI Handler

Arbitrary File Upload Vulnerability in AMI BMC Software

Command Injection Vulnerability in AMI BMC SPX REST API

Memory Manipulation Vulnerability in AMI BMC SPX REST API

A vulnerability in the IPMI handler, where an unauthorized attacker can use certain oracles to guess a valid username

File Access Vulnerability in AMI BMC SPX REST API

31 January 2023

Weak password hashes for Redfish & API

30 January 2023

Password reset interception via API