New AMI BMC Flaws Allowing Takeover and Physical Damage Could Impact Millions of Devices
New AMI BMC Flaws Allowing Takeover and Physical Damage Could Impact Millions of Devices
21 July 2023
The new vulnerabilities disclosed by Eclypsium on Thursday are CVE-2023-34329, a critical authentication bypass issue that can be exploited by spoofing HTTP headers, and CVE-2023-34330, a code injection flaw.