Intel Baseboard Management Controller Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Intel Baseboard Management Controller Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (17)
CVE-2019-11171 — CVSS 9.8 (critical): Heap corruption in Intel(R) Baseboard Management Controller firmware may allow an unauthenticated user to potentially enable information…
CVE-2019-11168 — CVSS 9.1 (critical): Insufficient session validation in Intel(R) Baseboard Management Controller firmware may allow an unauthenticated user to potentially…
CVE-2019-11178 — CVSS 8.1 (high): Stack overflow in Intel(R) Baseboard Management Controller firmware may allow an authenticated user to potentially enable information…
CVE-2020-24474 — CVSS 8.0 (high): Buffer overflow in the BMC firmware for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.48.ce3e3bd2 may…
CVE-2020-24473 — CVSS 7.8 (high): Out of bounds write in the BMC firmware for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.48.ce3e3bd2…
CVE-2019-11170 — CVSS 7.8 (high): Authentication bypass in Intel(R) Baseboard Management Controller firmware may allow an unauthenticated user to potentially enable…
CVE-2019-11181 — CVSS 7.8 (high): Out of bound read in Intel(R) Baseboard Management Controller firmware may allow an unauthenticated user to potentially enable escalation…
CVE-2019-11180 — CVSS 7.5 (high): Insufficient input validation in Intel(R) Baseboard Management Controller firmware may allow an unauthenticated user to potentially enable…
CVE-2019-11182 — CVSS 7.5 (high): Memory corruption in Intel(R) Baseboard Management Controller firmware may allow an unauthenticated user to potentially enable denial of…
CVE-2019-11177 — CVSS 7.5 (high): Unhandled exception in Intel(R) Baseboard Management Controller firmware may allow an unauthenticated user to potentially enable denial of…
CVE-2019-11175 — CVSS 7.5 (high): Insufficient input validation in Intel(R) Baseboard Management Controller firmware may allow an unauthenticated user to potentially enable…
CVE-2019-11173 — CVSS 7.1 (high): Insufficient session validation in Intel(R) Baseboard Management Controller firmware may allow an unauthenticated user to potentially…
CVE-2019-11179 — CVSS 6.5 (medium): Insufficient input validation in Intel(R) Baseboard Management Controller firmware may allow an authenticated user to potentially enable…
CVE-2020-24475 — CVSS 5.5 (medium): Improper initialization in the BMC firmware for some Intel(R) Server Boards, Server Systems and Compute Modules before version…
CVE-2019-11172 — CVSS 5.3 (medium): Out of bound read in Intel(R) Baseboard Management Controller firmware may allow an unauthenticated user to potentially enable information…
CVE-2019-11174 — CVSS 5.3 (medium): Insufficient access control in Intel(R) Baseboard Management Controller firmware may allow an unauthenticated user to potentially enable…
CVE-2022-29493 — CVSS 4.5 (medium): Uncaught exception in webserver for the Integrated BMC in some Intel(R) platforms before versions 2.86, 2.09 and 2.78 may allow a…