Megarac_spx
This hub aggregates every CVE we track for Megarac_spx, a product in the hardware firmware space. Use it to gauge the current risk picture and drill into individual advisories.
21
CVEs tracked
2
Critical
13
High
0
In CISA KEV
Severity distribution
HIGH13MEDIUM6CRITICAL2
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
2024-072026-06
Latest CVEs
The 15 most recently published vulnerabilities affecting Megarac_spx.
- CVE-2023-37297heap memory overflow 8.3
- CVE-2023-37296Stack-based Buffer Overflow8.3
- CVE-2023-37295Heap-based Buffer Overflow8.3
- CVE-2023-37294Heap-based Buffer Overflow8.3
- CVE-2023-37293stack-based buffer overflow 9.6
- CVE-2023-34333Untrusted Pointer Dereference 7.8
- CVE-2023-3043Stack-based Buffer Overflow BMC9.6
- CVE-2023-34332Untrusted Pointer Dereference in BMC7.8
- CVE-2023-34473Usage of Hard-coded Credentials6.6
- CVE-2023-34472AMI SPx contains a vulnerability in the BMC where an Attacker may cause an improper neutralization of CRLF sequences in HTTP Headers. A successful exploit of this vulnerability may lead to a loss o...5.7
- CVE-2023-34471Missing Cryptographic Step6.3
- CVE-2023-34338hard coded cryptographic key7.1
- CVE-2023-34337Inadequate Encryption Strength7.6
- CVE-2023-34336AMI BMC contains a vulnerability in the IPMI handler, where an attacker with the required privileges can cause a buffer overflow, which may lead to code execution, denial of service, or escalation ...8.1
- CVE-2023-34335AMI BMC contains a vulnerability in the IPMI handler, where an unauthenticated host is allowed to write to a host SPI flash, bypassing secure boot protections. An exploitation of this vulnerability...7.7
Product normalization is registry-driven with AI assist and human review. How it works