Lucene search
+L

500 matches found

ptsecurity
ptsecurity
added 2026/02/27 12:0 a.m.11 views

PT-2026-22312

Name of the Vulnerable Software and Affected Versions rubyipmi affected versions not specified Description A flaw exists in rubyipmi, a gem used in the Baseboard Management Controller BMC component of Red Hat Satellite. An authenticated attacker possessing host creation or update permissions can...

8.3CVSS6.8AI score0.00771EPSS
Exploits0References13
redhatcve
redhatcve
added 2026/01/17 9:15 a.m.5 views

CVE-2025-12006

There is a vulnerability in the Supermicro BMC firmware validation logic at Supermicro MBD-X12STW-F . An attacker can update the system firmware with a specially crafted image...

7.2CVSS6.9AI score0.00277EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/01/17 9:15 a.m.6 views

CVE-2025-12007

There is a vulnerability in the Supermicro BMC firmware validation logic at Supermicro MBD-X13SEM-F . An attacker can update the system firmware with a specially crafted image...

8.4CVSS6.9AI score0.0012EPSS
Exploits0References1
nvd
nvd
added 2026/01/16 9:15 a.m.17 views

CVE-2025-12006

There is a vulnerability in the Supermicro BMC firmware validation logic at Supermicro MBD-X12STW-F . An attacker can update the system firmware with a specially crafted image...

7.2CVSS0.00277EPSS
Exploits0References1
cve
cve
added 2026/01/16 8:39 a.m.23 views

CVE-2025-12007

CVE-2025-12007 affects Supermicro BMC firmware validation logic on the MBD-X13SEM-F board. The vulnerability enables an attacker to update system firmware using a specially crafted image due to flawed BMC firmware verification. Impact is aligned with a high-severity CVSS vector (local, low comple...

8.4CVSS6.5AI score0.0012EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/01/16 8:39 a.m.4 views

CVE-2025-12007 Supermicro BMC firmware update validation bypass

There is a vulnerability in the Supermicro BMC firmware validation logic at Supermicro MBD-X13SEM-F . An attacker can update the system firmware with a specially crafted image...

6.5AI score0.0012EPSS
Exploits0References1
cnnvd
cnnvd
added 2026/01/16 12:0 a.m.6 views

SuperMicro MBD-X12STW security vulnerabilities

The SuperMicro MBD-X12STW is a server motherboard produced by the American company SuperMicro. The MBD-X12STW has a security vulnerability, which stems from issues with the BMC firmware verification logic. This vulnerability could allow attackers to use customized image updates to update the syst...

7.2CVSS5.8AI score0.00277EPSS
Exploits0References2
redhatcve
redhatcve
added 2026/01/09 10:12 a.m.4 views

CVE-2019-11175

Insufficient input validation in IntelR Baseboard Management Controller firmware may allow an unauthenticated user to potentially enable denial of service via network access...

7.5CVSS6.9AI score0.01059EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/01/09 10:11 a.m.3 views

CVE-2019-11168

Insufficient session validation in IntelR Baseboard Management Controller firmware may allow an unauthenticated user to potentially enable information disclosure and/or denial of service via network access...

9.1CVSS6.9AI score0.01255EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/01/09 10:11 a.m.6 views

CVE-2019-11177

Unhandled exception in IntelR Baseboard Management Controller firmware may allow an unauthenticated user to potentially enable denial of service via network access...

7.8CVSS6.9AI score0.0111EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/01/09 10:10 a.m.7 views

CVE-2019-11178

Stack overflow in IntelR Baseboard Management Controller firmware may allow an authenticated user to potentially enable information disclosure and/or denial of service via network access...

8.1CVSS6.9AI score0.01027EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/01/09 10:10 a.m.6 views

CVE-2019-11170

Authentication bypass in IntelR Baseboard Management Controller firmware may allow an unauthenticated user to potentially enable information disclosure, escalation of privilege and/or denial of service via local access...

7.8CVSS7.3AI score0.00404EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/01/09 9:27 a.m.6 views

CVE-2023-31015

NVIDIA DGX H100 BMC contains a vulnerability in the REST service where a host user may cause as improper authentication issue. A successful exploit of this vulnerability may lead to escalation of privileges, information disclosure, code execution, and denial of service...

7.8CVSS7.2AI score0.0018EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/11/19 8:18 a.m.5 views

CVE-2025-8727

There is a vulnerability in the Supermicro BMC web function at Supermicro MBD-X13SEDW-F. After logging into the BMC Web server, an attacker can use a specially crafted payload to trigger the Stack buffer overflow vulnerability...

7.2CVSS7.3AI score0.00299EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/11/19 7:26 a.m.9 views

CVE-2025-7623

Stack-based buffer overflow in the SMASH-CLP shell. An authenticated attacker with SSH access to the BMC can exploit a stack buffer overflow via a crafted SMASH command, overwrite the return address and registers, and achieve arbitrary code execution on the BMC firmware operating system...

5.4CVSS8AI score0.00239EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/11/19 7:26 a.m.6 views

CVE-2025-8076

There is a vulnerability in the Supermicro BMC web function at Supermicro MBD-X13SEDW-F. After logging into the BMC Web server, an attacker can use a specially crafted payload to trigger the Stack buffer overflow vulnerability...

7.2CVSS7.3AI score0.00299EPSS
Exploits0References1
euvd
euvd
added 2025/11/18 9:30 a.m.4 views

EUVD-2025-197953

Stack buffer overflow vulnerability exists in the Supermicro BMC Shared library. An authenticated attacker with access to the BMC exploit stack buffer via a crafted header and achieve arbitrary code execution of the BMC’s firmware operating system...

5.5CVSS7.5AI score0.00284EPSS
Exploits0References2
euvd
euvd
added 2025/11/18 9:30 a.m.7 views

EUVD-2025-197952

There is a vulnerability in the Supermicro BMC web function at Supermicro MBD-X13SEDW-F. After logging into the BMC Web server, an attacker can use a specially crafted payload to trigger the Stack buffer overflow vulnerability...

7.2CVSS6.8AI score0.00299EPSS
Exploits0References2
nvd
nvd
added 2025/11/18 8:15 a.m.6 views

CVE-2025-8727

There is a vulnerability in the Supermicro BMC web function at Supermicro MBD-X13SEDW-F. After logging into the BMC Web server, an attacker can use a specially crafted payload to trigger the Stack buffer overflow vulnerability...

7.2CVSS0.00299EPSS
Exploits0References1
cve
cve
added 2025/11/18 7:52 a.m.15 views

CVE-2025-8727

CVE-2025-8727 describes a stack buffer overflow in the Supermicro BMC Web function on the MBD-X13SEDW-F motherboard. After logging into the BMC Web server, a specially crafted payload can trigger the overflow, with sources indicating potential arbitrary code execution. Documented impact is high (...

7.2CVSS6.9AI score0.00299EPSS
Exploits0References1
Rows per page
Query Builder