CVE-2024-54085 (CVSS 10.0) : A critical vulnerability affecting the American Megatrends Inc. (AMI) MegaRAC SPx firmware package for baseboard management controllers (BMCs).

2025. 07. 03.
OSINT 협회
OSINT 정보
CVE-2024-54085 (CVSS 10.0) : A critical vulnerability affecting the American Megatrends Inc. (AMI) MegaRAC SPx firmware package for baseboard management controllers (BMCs). Attackers can bypass authentication in the Redfish Host Interface by modifying the X-Server-Addr or Host header in HTTP requests, tricking the BMC into believing requests originate from the host system itself. **Exploitation does not require authentication.**
CVE-2024-54085 (CVSS 10.0) : A critical vulnerability affecting the American Megatrends Inc. (AMI) MegaRAC SPx firmware package for baseboard management controllers (BMCs). Attackers can bypass authentication in the Redfish Host Interface by modifying the X-Server-Addr or Host header in HTTP requests, tricking the BMC into believing requests originate from the host system itself. **Exploitation does not require authentication.**
게시일: 2025. 07. 03.
출처: OSINT 협회 Facebook
원본 Facebook 게시물 보기 →
이전

𝗡𝘂𝗰𝗹𝗲𝗶 𝗙𝗼𝗿𝗴𝗲 - a tool that helps you visually create Nuclei YAML templates

다음

CVE-2025-20309 : Critical Cisco Vulnerability in Unified CM Grants Root Access via Static Credentials