CVE-2023-37297

Summary

CVE-2023-37297 is a recently identified vulnerability affecting AMI's SPx software. This issue lies in the BMC component of the software, allowing an attacker to cause heap memory corruption via an adjacent network. A successful exploitation of this vulnerability could result in significant consequences, including a loss of confidentiality, integrity, and availability. Attackers may leverage this weakness to gain unauthorized access, modify data, or disrupt services, posing a serious threat to organizations using the affected software. Organizations are strongly advised to apply available patches or mitigations to protect against potential attacks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.