Every CVE whose affected-product data names Intel Bmc Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (17)
CVE-2020-11486 — CVSS 9.8 (critical): NVIDIA DGX servers, all DGX-1 with BMC firmware versions prior to 3.38.30, contain a vulnerability in the AMI BMC firmware in which…
CVE-2020-11483 — CVSS 9.8 (critical): NVIDIA DGX servers, all DGX-1 with BMC firmware versions prior to 3.38.30 and all DGX-2 with BMC firmware versions prior to 1.06.06…
CVE-2018-12171 — CVSS 9.8 (critical): Privilege escalation in Intel Baseboard Management Controller (BMC) firmware before version 1.43.91f76955 may allow an unprivileged user to…
CVE-2020-11485 — CVSS 8.8 (high): NVIDIA DGX servers, all DGX-1 with BMC firmware versions prior to 3.38.30, contains a Cross-Site Request Forgery (CSRF) vulnerability in…
CVE-2018-3682 — CVSS 8.2 (high): BMC Firmware in Intel server boards, compute modules, and systems potentially allow an attacker with administrative privileges to make…
CVE-2020-12380 — CVSS 7.8 (high): Out of bounds read in the BMC firmware for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.47 may allow an…
CVE-2020-12377 — CVSS 7.8 (high): Insufficient input validation in the BMC firmware for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.47…
CVE-2020-11489 — CVSS 7.5 (high): NVIDIA DGX servers, all DGX-1 with BMC firmware versions prior to 3.38.30 and all DGX-2 with BMC firmware versions prior to 1.06.06…
CVE-2020-11615 — CVSS 7.5 (high): NVIDIA DGX servers, all BMC firmware versions prior to 3.38.30, contain a vulnerability in the AMI BMC firmware in which it uses a…
CVE-2020-11616 — CVSS 7.5 (high): NVIDIA DGX servers, all BMC firmware versions prior to 3.38.30, contain a vulnerability in the AMI BMC firmware in which the Pseudo-Random…
CVE-2020-11487 — CVSS 7.5 (high): NVIDIA DGX servers, DGX-1 with BMC firmware versions prior to 3.38.30. DGX-2 with BMC firmware versions prior to 1.06.06 and all DGX A100…
CVE-2020-12374 — CVSS 6.7 (medium): Buffer overflow in the BMC firmware for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.47 may allow a…
CVE-2020-12373 — CVSS 6.7 (medium): Expired pointer dereference in some Intel(R) Graphics Drivers before version 26.20.100.8141 may allow a privileged user to potentially…
CVE-2020-11488 — CVSS 6.7 (medium): NVIDIA DGX servers, all DGX-1 with BMC firmware versions prior to 3.38.30 and all DGX-2 with BMC firmware versions prior to 1.06.06…
CVE-2020-12375 — CVSS 6.7 (medium): Heap overflow in the BMC firmware for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.47 may allow an…
CVE-2020-12376 — CVSS 5.5 (medium): Use of hard-coded key in the BMC firmware for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.47 may allow…
CVE-2020-11484 — CVSS 4.9 (medium): NVIDIA DGX servers, all DGX-1 with BMC firmware versions prior to 3.38.30, contains a vulnerability in the AMI BMC firmware in which an…