Intel Server System D50Tnp1Mhcrac Firmware vulnerabilities

10 known vulnerabilities affecting intel/server_system_d50tnp1mhcrac_firmware.

Total CVEs

10

CISA KEV

0

Public exploits

0

Exploited in wild

0

Severity breakdown

HIGH3MEDIUM7

Vulnerabilities

Page 1 of 1

CVE-2023-22442HIGHCVSS 7.1fixed in 2.902023-05-10

CVE-2023-22442 [HIGH] CWE-787 CVE-2023-22442: Out of bounds write in some Intel(R) Server Board BMC firmware before version 2.90 may allow a privi Out of bounds write in some Intel(R) Server Board BMC firmware before version 2.90 may allow a privileged user to enable escalation of privilege via local access.

CVE-2023-22297HIGHCVSS 7.8fixed in 2.902023-05-10

CVE-2023-22297 [HIGH] CWE-788 CVE-2023-22297: Access of memory location after end of buffer in some Intel(R) Server Board BMC firmware before vers Access of memory location after end of buffer in some Intel(R) Server Board BMC firmware before version 2.90 may allow a privileged user to enable escalation of privilege via local access.

CVE-2023-22661HIGHCVSS 7.8fixed in 2.902023-05-10

CVE-2023-22661 [HIGH] CWE-120 CVE-2023-22661: Buffer overflow in some Intel(R) Server Board BMC firmware before version 2.90 may allow a privilege Buffer overflow in some Intel(R) Server Board BMC firmware before version 2.90 may allow a privileged user to enable escalation of privilege via local access.

CVE-2023-22443MEDIUMCVSS 5.5fixed in 2.902023-05-10

CVE-2023-22443 [MEDIUM] CWE-680 CVE-2023-22443: Integer overflow in some Intel(R) Server Board BMC firmware before version 2.90 may allow a privileg Integer overflow in some Intel(R) Server Board BMC firmware before version 2.90 may allow a privileged user to enable denial of service via local access.

CVE-2023-25545MEDIUMCVSS 6.7fixed in 2.902023-05-10

CVE-2023-25545 [HIGH] CWE-92 CVE-2023-25545: Improper buffer restrictions in some Intel(R) Server Board BMC firmware before version 2.90 may allo Improper buffer restrictions in some Intel(R) Server Board BMC firmware before version 2.90 may allow a privileged user to enable escalation of privilege via local access.

CVE-2023-25175MEDIUMCVSS 5.5fixed in 2.902023-05-10

CVE-2023-25175 [MEDIUM] CWE-20 CVE-2023-25175: Improper input validation in some Intel(R) Server Board BMC firmware before version 2.90 may allow a Improper input validation in some Intel(R) Server Board BMC firmware before version 2.90 may allow a privileged user to enable information disclosure via local access.

CVE-2023-22379MEDIUMCVSS 5.5fixed in 2.902023-05-10

CVE-2023-22379 [MEDIUM] CWE-20 CVE-2023-22379: Improper input validation in some Intel(R) Server Board BMC firmware before version 2.90 may allow a Improper input validation in some Intel(R) Server Board BMC firmware before version 2.90 may allow a privileged user to enable information disclosure via local access.

CVE-2023-25776MEDIUMCVSS 4.4fixed in 2.902023-05-10

CVE-2023-25776 [MEDIUM] CWE-20 CVE-2023-25776: Improper input validation in some Intel(R) Server Board BMC firmware before version 2.90 may allow a Improper input validation in some Intel(R) Server Board BMC firmware before version 2.90 may allow a privileged user to enable information disclosure via local access.

CVE-2023-24475MEDIUMCVSS 4.4fixed in 2.902023-05-10

CVE-2023-24475 [MEDIUM] CWE-125 CVE-2023-24475: Out of bounds read in some Intel(R) Server Board BMC firmware before version 2.90 may allow a privil Out of bounds read in some Intel(R) Server Board BMC firmware before version 2.90 may allow a privileged user to enable information disclosure via local access.

CVE-2023-28411MEDIUMCVSS 5.5fixed in 2.902023-05-10

CVE-2023-28411 [MEDIUM] CWE-415 CVE-2023-28411: Double free in some Intel(R) Server Board BMC firmware before version 2.90 may allow a privileged us Double free in some Intel(R) Server Board BMC firmware before version 2.90 may allow a privileged user to enable information disclosure via local access.