Lucene search
K

413 matches found

CNNVD
CNNVD
added 2026/01/16 12:0 a.m.6 views

SuperMicro MBD-X12STW security vulnerabilities

The SuperMicro MBD-X12STW is a server motherboard produced by the American company SuperMicro. The MBD-X12STW has a security vulnerability, which stems from issues with the BMC firmware verification logic. This vulnerability could allow attackers to use customized image updates to update the syst...

7.2CVSS5.8AI score0.00277EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/01/09 10:12 a.m.4 views

CVE-2019-11175

Insufficient input validation in IntelR Baseboard Management Controller firmware may allow an unauthenticated user to potentially enable denial of service via network access...

7.5CVSS6.9AI score0.01059EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:11 a.m.3 views

CVE-2019-11168

Insufficient session validation in IntelR Baseboard Management Controller firmware may allow an unauthenticated user to potentially enable information disclosure and/or denial of service via network access...

9.1CVSS6.9AI score0.01255EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:11 a.m.6 views

CVE-2019-11177

Unhandled exception in IntelR Baseboard Management Controller firmware may allow an unauthenticated user to potentially enable denial of service via network access...

7.8CVSS6.9AI score0.0111EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:10 a.m.7 views

CVE-2019-11178

Stack overflow in IntelR Baseboard Management Controller firmware may allow an authenticated user to potentially enable information disclosure and/or denial of service via network access...

8.1CVSS6.9AI score0.01027EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:10 a.m.6 views

CVE-2019-11170

Authentication bypass in IntelR Baseboard Management Controller firmware may allow an unauthenticated user to potentially enable information disclosure, escalation of privilege and/or denial of service via local access...

7.8CVSS7.3AI score0.00404EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:27 a.m.4 views

CVE-2023-31015

NVIDIA DGX H100 BMC contains a vulnerability in the REST service where a host user may cause as improper authentication issue. A successful exploit of this vulnerability may lead to escalation of privileges, information disclosure, code execution, and denial of service...

7.8CVSS7.2AI score0.0018EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/11/19 8:18 a.m.5 views

CVE-2025-8727

There is a vulnerability in the Supermicro BMC web function at Supermicro MBD-X13SEDW-F. After logging into the BMC Web server, an attacker can use a specially crafted payload to trigger the Stack buffer overflow vulnerability...

7.2CVSS7.3AI score0.00293EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/11/19 7:26 a.m.7 views

CVE-2025-7623

Stack-based buffer overflow in the SMASH-CLP shell. An authenticated attacker with SSH access to the BMC can exploit a stack buffer overflow via a crafted SMASH command, overwrite the return address and registers, and achieve arbitrary code execution on the BMC firmware operating system...

5.4CVSS8AI score0.00234EPSS
Exploits0References1
EUVD
EUVD
added 2025/11/18 9:30 a.m.4 views

EUVD-2025-197953

Stack buffer overflow vulnerability exists in the Supermicro BMC Shared library. An authenticated attacker with access to the BMC exploit stack buffer via a crafted header and achieve arbitrary code execution of the BMC’s firmware operating system...

5.5CVSS7.5AI score0.00277EPSS
Exploits0References2
NVD
NVD
added 2025/11/18 8:15 a.m.6 views

CVE-2025-8727

There is a vulnerability in the Supermicro BMC web function at Supermicro MBD-X13SEDW-F. After logging into the BMC Web server, an attacker can use a specially crafted payload to trigger the Stack buffer overflow vulnerability...

7.2CVSS0.00293EPSS
Exploits0References1
CVE
CVE
added 2025/11/18 7:43 a.m.14 views

CVE-2025-8404

CVE-2025-8404 describes a stack buffer overflow in the Supermicro BMC Shared library. An authenticated attacker with access to the BMC can trigger a crafted header to overflow a stack and achieve arbitrary code execution on the BMC firmware OS. The issue is assessed with CVSS 3.1: Network attack ...

5.5CVSS7.7AI score0.00277EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/11/18 7:43 a.m.10 views

CVE-2025-8404 Stack buffer overflow vulnerability exists in the Supermicro BMC Shared library

Stack buffer overflow vulnerability exists in the Supermicro BMC Shared library. An authenticated attacker with access to the BMC exploit stack buffer via a crafted header and achieve arbitrary code execution of the BMC’s firmware operating system...

5.5CVSS0.00277EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/11/18 7:16 a.m.8 views

CVE-2025-8076 A stack buffer overflow vulnerability exists in the Supermicro BMC Web function

There is a vulnerability in the Supermicro BMC web function at Supermicro MBD-X13SEDW-F. After logging into the BMC Web server, an attacker can use a specially crafted payload to trigger the Stack buffer overflow vulnerability...

7.2CVSS0.00293EPSS
Exploits0References1
EUVD
EUVD
added 2025/11/18 7:5 a.m.6 views

EUVD-2025-197951

Stack-based buffer overflow in the SMASH-CLP shell. An authenticated attacker with SSH access to the BMC can exploit a stack buffer overflow via a crafted SMASH command, overwrite the return address and registers, and achieve arbitrary code execution on the BMC firmware operating system...

5.4CVSS7.5AI score0.00234EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/11/18 12:0 a.m.4 views

PT-2025-47249

Name of the Vulnerable Software and Affected Versions Supermicro BMC versions affected versions not specified Description A stack buffer overflow exists in the Supermicro BMC Shared library. An authenticated attacker with access to the BMC can exploit a stack buffer via a crafted header,...

5.5CVSS7.7AI score0.00277EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/11/18 12:0 a.m.5 views

PT-2025-47250

Name of the Vulnerable Software and Affected Versions Supermicro BMC versions affected versions not specified Description A stack buffer overflow vulnerability exists in the web function of the Supermicro BMC on the Supermicro MBD-X13SEDW-F. An attacker gaining access to the BMC Web server can...

7.2CVSS6.9AI score0.00293EPSS
Exploits0References7
CNNVD
CNNVD
added 2025/11/18 12:0 a.m.4 views

Supermicro BMC Firmware 安全漏洞

Supermicro BMC Firmware is a system firmware from Supermicro Corporation USA. A security vulnerability exists in Supermicro BMC Firmware that originates from a stack buffer overflow in the BMC Web function that could lead to arbitrary code execution...

7.2CVSS7.9AI score0.00293EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/11/13 12:0 a.m.5 views

Supermicro BMC 安全漏洞

The SuperMicro BMC is a firmware from SuperMicro USA used in devices such as servers, top-of-rack switches or RAID devices. A security vulnerability exists in Supermicro BMC that stems from a stack-based buffer overflow in the Insyde SMASH shell program...

5.4CVSS7.3AI score0.00208EPSS
Exploits0References1
CVE
CVE
added 2025/11/12 9:56 p.m.17 views

CVE-2025-40192

CVE-2025-40192 concerns the Linux kernel where a revert of the IPMI msg-stack fix (ipmi: fix msg stack when IPMI is disconnected) introduced a subtle bug. According to the description, certain BMCs can cause the IPMI driver to enter an infinite loop when misbehaving in a specific way, and reports...

6.1AI score0.00166EPSS
Exploits0References4
Rows per page
Query Builder