CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

497 matches found

Cvelist•added 2025/11/18 7:43 a.m.•9 views

CVE-2025-8404 Stack buffer overflow vulnerability exists in the Supermicro BMC Shared library

Stack buffer overflow vulnerability exists in the Supermicro BMC Shared library. An authenticated attacker with access to the BMC exploit stack buffer via a crafted header and achieve arbitrary code execution of the BMC’s firmware operating system...

5.5CVSS0.00277EPSS

Exploits0References1

CVE•added 2025/11/18 7:43 a.m.•12 views

CVE-2025-8404

CVE-2025-8404 describes a stack buffer overflow in the Supermicro BMC Shared library. An authenticated attacker with access to the BMC can trigger a crafted header to overflow a stack and achieve arbitrary code execution on the BMC firmware OS. The issue is assessed with CVSS 3.1: Network attack ...

5.5CVSS7.7AI score0.00277EPSS

Exploits0References1

Cvelist•added 2025/11/18 7:16 a.m.•6 views

CVE-2025-8076 A stack buffer overflow vulnerability exists in the Supermicro BMC Web function

There is a vulnerability in the Supermicro BMC web function at Supermicro MBD-X13SEDW-F. After logging into the BMC Web server, an attacker can use a specially crafted payload to trigger the Stack buffer overflow vulnerability...

7.2CVSS0.00293EPSS

Exploits0References1

Vulnrichment•added 2025/11/18 7:16 a.m.•2 views

CVE-2025-8076 A stack buffer overflow vulnerability exists in the Supermicro BMC Web function

7.2CVSS6.9AI score0.00293EPSS

Exploits0References1

EUVD•added 2025/11/18 7:5 a.m.•6 views

EUVD-2025-197951

Stack-based buffer overflow in the SMASH-CLP shell. An authenticated attacker with SSH access to the BMC can exploit a stack buffer overflow via a crafted SMASH command, overwrite the return address and registers, and achieve arbitrary code execution on the BMC firmware operating system...

5.4CVSS7.5AI score0.00234EPSS

Exploits0References2

Positive Technologies•added 2025/11/18 12:0 a.m.•3 views

PT-2025-47249

Name of the Vulnerable Software and Affected Versions Supermicro BMC versions affected versions not specified Description A stack buffer overflow exists in the Supermicro BMC Shared library. An authenticated attacker with access to the BMC can exploit a stack buffer via a crafted header,...

5.5CVSS7.7AI score0.00277EPSS

Exploits0References3

Positive Technologies•added 2025/11/18 12:0 a.m.•3 views

PT-2025-47250

Name of the Vulnerable Software and Affected Versions Supermicro BMC versions affected versions not specified Description A stack buffer overflow vulnerability exists in the web function of the Supermicro BMC on the Supermicro MBD-X13SEDW-F. An attacker gaining access to the BMC Web server can...

7.2CVSS6.9AI score0.00293EPSS

Exploits0References7

CNNVD•added 2025/11/18 12:0 a.m.•3 views

Supermicro BMC Firmware 安全漏洞

Supermicro BMC Firmware is a system firmware from Supermicro Corporation USA. A security vulnerability exists in Supermicro BMC Firmware that originates from a stack buffer overflow in the BMC Web function that could lead to arbitrary code execution...

7.2CVSS7.9AI score0.00293EPSS

Exploits0References1

NVD•added 2025/11/13 10:15 a.m.•4 views

CVE-2025-7704

Supermicro BMC Insyde SMASH shell program has a stacked-based overflow vulnerability...

5.4CVSS0.00203EPSS

Exploits0References1

CVE•added 2025/11/13 9:12 a.m.•8 views

CVE-2025-7704

CVE-2025-7704 describes a stack-based overflow in the Insyde SMASH shell used by Supermicro BMC. The issue affects the SMASH service component on Supermicro BMC, with the underlying cause identified as a stack-based buffer overflow in the shell. Public descriptions consistently reference a potent...

5.4CVSS6.9AI score0.00203EPSS

Exploits0References1

EUVD•added 2025/11/13 9:12 a.m.•4 views

EUVD-2025-163786

Supermicro BMC Insyde SMASH shell program has a stacked-based overflow vulnerability...

5.4CVSS6.7AI score0.00203EPSS

Exploits0References2

CNNVD•added 2025/11/13 12:0 a.m.•4 views

Supermicro BMC 安全漏洞

The SuperMicro BMC is a firmware from SuperMicro USA used in devices such as servers, top-of-rack switches or RAID devices. A security vulnerability exists in Supermicro BMC that stems from a stack-based buffer overflow in the Insyde SMASH shell program...

5.4CVSS7.3AI score0.00203EPSS

Exploits0References1

CVE•added 2025/11/12 9:56 p.m.•15 views

CVE-2025-40192

CVE-2025-40192 concerns the Linux kernel where a revert of the IPMI msg-stack fix (ipmi: fix msg stack when IPMI is disconnected) introduced a subtle bug. According to the description, certain BMCs can cause the IPMI driver to enter an infinite loop when misbehaving in a specific way, and reports...

6.1AI score0.00162EPSS

Exploits0References4

Positive Technologies•added 2025/10/28 12:0 a.m.•3 views

PT-2025-44225

Name of the Vulnerable Software and Affected Versions Supermicro BMC firmware versions affected versions not specified Description The Supermicro BMC firmware contains a flaw in its validation logic. An attacker can exploit this to update the system firmware with a specially crafted image...

7.2CVSS5.4AI score0.0012EPSS

Exploits0References9

EUVD•added 2025/10/07 12:30 a.m.•5 views

EUVD-2021-12080

Malware in sbrugna...

7.8CVSS7.7AI score0.00326EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2020-26794

Malware in sbrugna...

9.8CVSS7.8AI score0.03183EPSS

Exploits0References4