CVE-2023-37294

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Jan 9, 2024
Updated: Jan 12, 2024
CWE ID 787
CWE ID 122

Summary

CVE-2023-37294 is a heap memory corruption vulnerability affecting AMI's SPx BMC. An attacker can exploit this issue through adjacent network access, potentially leading to a loss of confidentiality, integrity, and availability. The vulnerability is located in AMI's SPx product and may allow an attacker to cause unintended system behavior by manipulating memory. Successful exploitation could result in severe consequences, making it a significant security concern for organizations using the affected product.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share