CVE-2024-54085

CRITICAL CISA KEV
Published Mar 11, 2025 Modified Nov 5, 2025 CWE-290

Description

AMI’s SPx contains a vulnerability in the BMC where an Attacker may bypass authentication remotely through the Redfish Host Interface. A successful exploitation of this vulnerability may lead to a loss of confidentiality, integrity, and/or availability.

CVSS v3.1 Score

9.8
CRITICAL
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA Known Exploited Vulnerability

This vulnerability is actively exploited in the wild.

Added: Jun 25, 2025 Remediation due: Jul 16, 2025

Weakness Type (CWE)

CWE-290 CWE-290

Affected Products

Vendor Product
ami megarac_sp-x
ami megarac_sp-x
netapp h300s_firmware
netapp h300s
netapp h500s_firmware
netapp h500s
netapp h700s_firmware
netapp h700s
netapp h410s_firmware
netapp h410s
netapp h410c_firmware
netapp h410c
netapp sg6160_firmware
netapp sg6160
netapp sgf6112_firmware
netapp sgf6112
netapp sg110_firmware
netapp sg110
netapp sg1100_firmware
netapp sg1100

References

Frequently Asked Questions

What is CVE-2024-54085? +
AMI’s SPx contains a vulnerability in the BMC where an Attacker may bypass authentication remotely through the Redfish Host Interface. A successful exploitation of this vulnerability may lead to a loss of confidentiality, integrity, and/or availability. It has a CVSS v3.1 base score of 9.8 (CRITICAL). This vulnerability is listed in CISA's Known Exploited Vulnerabilities catalog, indicating active exploitation in the wild.
How severe is CVE-2024-54085? +
CVE-2024-54085 has a CVSS v3.1 score of 9.8 out of 10, rated CRITICAL. This is a critical vulnerability that should be patched immediately.
What products are affected by CVE-2024-54085? +
CVE-2024-54085 affects products from ami, netapp, specifically: h300s, h300s_firmware, h410c, h410c_firmware, h410s, h410s_firmware, h500s, h500s_firmware, h700s, h700s_firmware, megarac_sp-x, sg110, sg1100, sg1100_firmware, sg110_firmware, sg6160, sg6160_firmware, sgf6112, sgf6112_firmware. Check the affected products table above for specific version ranges.
How do I check if I'm vulnerable to CVE-2024-54085? +
You can use Secably's free Website Scanner to check your website for known vulnerabilities. For infrastructure scanning, use the Port Scanner to identify exposed services that may be affected. Check the vendor advisories linked above for specific patch and version information.

Related Vulnerabilities

CVE-2026-6213

A vulnerability in Remote Spark SparkView before build 1122 allows an attacker to bypasses the local connection check and achieve …
CVE-2025-22271

The application or its infrastructure allows for IP address spoofing by providing its own value in the "X-Forwarded-For" header. Thus, …
CVE-2025-31122

scratch-coding-hut.github.io is the website for Coding Hut. In 1.0-beta3 and earlier, the login link can be used to login to …
CVE-2025-46345

Auth0 Account Link Extension is an extension aimed to help link accounts easily. Versions 2.3.4 to 2.6.6 do not verify …
CVE-2025-34053

An authentication bypass vulnerability exists in AVTECH IP camera, DVR, and NVR devices’ streamd web server. The strstr() function is …
CVE-2025-34063

A cryptographic authentication bypass vulnerability exists in OneLogin AD Connector prior to 6.1.5 due to the exposure of a tenant’s …

Don't wait for an exploit

Scan your website for vulnerabilities like CVE-2024-54085 — free, no signup required.

Start Free Scan