AMI BMC IPMI Handler Vulnerability: Bypassing Secure Boot Protections

AMI BMC IPMI Handler Vulnerability: Bypassing Secure Boot Protections

CVE-2023-34335 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

AMI BMC contains a vulnerability in the IPMI handler, where an unauthenticated host is allowed to write to a host SPI flash, bypassing secure boot protections. An exploitation of this vulnerability may lead to a loss of integrity or denial of service.  

Learn more about our Web Application Penetration Testing UK.