Ed W8EMV · @w8emv
260 followers · 254 posts · Server hachyderm.ioThe AMI MegaRAC BMC vulnerability disclosure for CVE-2022-40259 lists a file with the following filename
AMI_MegaRAC_SPx_Redfish_Authentication_Vulnerabilities.pdf
from the cp.ami.com website, but that file is not available.
cc @deltatux @bradbeam @fuzzychef @smorreel
( #redfish )
#ami #megarac #BMC #cve #redfish
Ed W8EMV · @w8emv
260 followers · 254 posts · Server hachyderm.io
new AMI #MegaRAC #BMC #CVE drop:
CVE-2022-40259: Arbitrary code execution flaw via #Redfish API due to improper exposure of commands to the user. (CVSS v3.1 score: 9.9 “critical”)
CVE-2022-40242: Default credentials for sysadmin user, allowing attackers to establish administrative shell. (CVSS v3.1 score: 8.3 “high”)
CVE-2022-2827: Request manipulation flaw allowing an attacker to enumerate usernames and determine if an account exists. (CVSS v3.1 score: 7.5 “high”)