COOEY // HUBcompliance · community · intelligence

Exposures › CVE-2024-54085

CVE-2024-54085

Severity
high · on CISA KEV actively exploited
Source
CISA-KEV · kev
Published
2025-06-25
Reference
https://nvd.nist.gov/vuln/detail/CVE-2024-54085
⌖ exploited in the wild shame 50/100 exploited-in-wild

AMI MegaRAC SPx contains an authentication bypass by spoofing vulnerability in the Redfish Host Interface. A successful exploitation of this vulnerability may lead to a loss of confidentiality, integrity, and/or availability.

Players implicated

AMI · vendorMegaRAC SPx · product

Description

AMI MegaRAC SPx contains an authentication bypass by spoofing vulnerability in the Redfish Host Interface. A successful exploitation of this vulnerability may lead to a loss of confidentiality, integrity, and/or availability.

Affected FedRAMP products 0 in the catalog

No correlated FedRAMP products.