CVE-2023-34341

AMI BMC contains a vulnerability in the SPX REST API, where an attacker with the required privileges can read and write to arbitrary locations within the memory context of the IPMI server process, which may lead to code execution, denial of service, information disclosure, or data tampering.

CVSS v3 8.8 HIGH

8.8^/10

CVSS v3 : HIGH

Vector :

Exploitability : 2.8 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://9443417.fs1.hubspotusercontent-na1.net/hubfs/9443417/Security%20Advisories/AMI-SA-2023005.pdf	Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:ami:megarac_sp-x::::::::
	cpe:2.3:a:ami:megarac_sp-x::::::::

History

20 Jun 2023, 15:32

Type	Values Removed	Values Added
CPE		cpe:2.3:a:ami:megarac_sp-x::::::::
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 8.8
First Time		Ami Ami megarac Sp-x
CWE		CWE-119
References	~~(MISC) https://9443417.fs1.hubspotusercontent-na1.net/hubfs/9443417/Security%20Advisories/AMI-SA-2023005.pdf -~~	(MISC) https://9443417.fs1.hubspotusercontent-na1.net/hubfs/9443417/Security%20Advisories/AMI-SA-2023005.pdf - Vendor Advisory

12 Jun 2023, 17:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2023-06-12 17:15

Updated : 2024-02-28 20:13

NVD link : CVE-2023-34341

Mitre link : CVE-2023-34341

CVE.ORG link : CVE-2023-34341

JSON object : View

Products Affected

ami

megarac_sp-x

CWE

CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

{"id": "CVE-2023-34341", "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.8, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 2.8}, {"type": "Secondary", "source": "biossecurity@ami.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.2, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "HIGH", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 1.2}]}, "published": "2023-06-12T17:15:10.047", "references": [{"url": "https://9443417.fs1.hubspotusercontent-na1.net/hubfs/9443417/Security%20Advisories/AMI-SA-2023005.pdf", "tags": ["Vendor Advisory"], "source": "biossecurity@ami.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-119"}]}, {"type": "Secondary", "source": "biossecurity@ami.com", "description": [{"lang": "en", "value": "CWE-119"}]}], "descriptions": [{"lang": "en", "value": "AMI BMC contains a vulnerability in the SPX REST API, where an\nattacker with the required privileges can read and write to arbitrary locations\nwithin the memory context of the IPMI server process, which may lead to code\nexecution, denial of service, information disclosure, or data tampering.\n\n\n\n\n\n"}], "lastModified": "2023-06-20T15:32:56.323", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:ami:megarac_sp-x:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BBB7BA77-D5E4-4A28-A164-246D13264E74", "versionEndExcluding": "12.7", "versionStartIncluding": "12.0"}, {"criteria": "cpe:2.3:a:ami:megarac_sp-x:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7A29A821-0C82-47A1-8345-7B367F88EEF8", "versionEndExcluding": "13.5", "versionStartIncluding": "13.0"}], "operator": "OR"}]}], "sourceIdentifier": "biossecurity@ami.com"}