CVE-2023-34334

AMI BMC contains a vulnerability in the SPX REST API, where an attacker with the required privileges can inject arbitrary shell commands, which may lead to code execution, denial of service, information disclosure, or data tampering.

CVSS v3 8.8 HIGH

8.8^/10

CVSS v3 : HIGH

Vector :

Exploitability : 2.8 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://9443417.fs1.hubspotusercontent-na1.net/hubfs/9443417/Security%20Advisories/AMI-SA-2023005.pdf	Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:ami:megarac_sp-x::::::::
	cpe:2.3:a:ami:megarac_sp-x::::::::

History

20 Jun 2023, 16:30

Type	Values Removed	Values Added
References	~~(MISC) https://9443417.fs1.hubspotusercontent-na1.net/hubfs/9443417/Security%20Advisories/AMI-SA-2023005.pdf -~~	(MISC) https://9443417.fs1.hubspotusercontent-na1.net/hubfs/9443417/Security%20Advisories/AMI-SA-2023005.pdf - Vendor Advisory
First Time		Ami Ami megarac Sp-x
CPE		cpe:2.3:a:ami:megarac_sp-x::::::::
CWE		CWE-78
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 8.8

12 Jun 2023, 18:22

Type	Values Removed	Values Added
New CVE

Information

Published : 2023-06-12 18:15

Updated : 2024-02-28 20:13

NVD link : CVE-2023-34334

Mitre link : CVE-2023-34334

CVE.ORG link : CVE-2023-34334

JSON object : View

Products Affected

ami

megarac_sp-x

CWE

CWE-78

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

{"id": "CVE-2023-34334", "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.8, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 2.8}, {"type": "Secondary", "source": "biossecurity@ami.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.2, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "HIGH", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 1.2}]}, "published": "2023-06-12T18:15:10.243", "references": [{"url": "https://9443417.fs1.hubspotusercontent-na1.net/hubfs/9443417/Security%20Advisories/AMI-SA-2023005.pdf", "tags": ["Vendor Advisory"], "source": "biossecurity@ami.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-78"}]}, {"type": "Secondary", "source": "biossecurity@ami.com", "description": [{"lang": "en", "value": "CWE-78"}]}], "descriptions": [{"lang": "en", "value": "AMI BMC contains a vulnerability in the SPX REST API, where an\nattacker with the required privileges can inject arbitrary shell commands,\nwhich may lead to code execution, denial of service, information disclosure, or\ndata tampering.\n\n\u00a0\n\n\n\n\n\n\n\n"}], "lastModified": "2023-06-20T16:30:50.450", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:ami:megarac_sp-x:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BBB7BA77-D5E4-4A28-A164-246D13264E74", "versionEndExcluding": "12.7", "versionStartIncluding": "12.0"}, {"criteria": "cpe:2.3:a:ami:megarac_sp-x:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7A29A821-0C82-47A1-8345-7B367F88EEF8", "versionEndExcluding": "13.5", "versionStartIncluding": "13.0"}], "operator": "OR"}]}], "sourceIdentifier": "biossecurity@ami.com"}