Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools

MegaRAC-SPx

Source -

CNA

CNA CVEs -

1

ADP CVEs -

0

CISA CVEs -

0

NVD CVEs -

0
Related CVEsRelated VendorsRelated AssignersReports
1Vulnerabilities found
CVE-2024-54085
Assigner-AMI
ShareView Details
Assigner-AMI
CVSS Score-10||CRITICAL
EPSS-18.45% / 94.98%
||
7 Day CHG+3.95%
Published-11 Mar, 2025 | 14:00
Updated-30 Jul, 2025 | 01:36
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Known KEV||Action Due Date - 2025-07-16||Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
Redfish Authentication Bypass

AMI’s SPx contains a vulnerability in the BMC where an Attacker may bypass authentication remotely through the Redfish Host Interface. A successful exploitation of this vulnerability may lead to a loss of confidentiality, integrity, and/or availability.

Action-Not Available
Vendor-NetApp, Inc.AMI
Product-sg1100_firmwareh410ch410c_firmwareh700sh410ssgf6112_firmwaremegarac_sp-xh500s_firmwaresg110h700s_firmwaresg1100sgf6112h500sh300ssg110_firmwareh300s_firmwareh410s_firmwaresg6160sg6160_firmwareMegaRAC-SPxMegaRAC SPx
CWE ID-CWE-290
Authentication Bypass by Spoofing