5 matches found
CVE-2020-15046
creationtimestamp| type| source ---|---|--- 2022-06-08 21:37:47+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/1395...
SuperMicro IPMI WebInterface 03.40 - Cross-Site Request Forgery (Add Admin) Vulnerability
Exploit for hardware platform in category web applications Exploit Title: SuperMicro IPMI WebInterface 03.40 - Cross-Site Request Forgery Add Admin Exploit Author: Metin Yunus Kandemir Vendor Homepage: https://www.supermicro.com/ Version: X10DRH-iT motherboards with BIOS 2.0a and IPMI firmware...
SuperMicro IPMI 03.40 Cross Site Request Forgery
Exploit Title: SuperMicro IPMI 03.40 - Cross-Site Request Forgery Add Admin Exploit Author: Metin Yunus Kandemir Vendor Homepage: https://www.supermicro.com/ Software Link: https://www.supermicro.com/en/solutions/management-software/bmc-resources Version: X10DRH-iT motherboards with BIOS 2.0a and...
SuperMicro IPMI 03.40 - Cross-Site Request Forgery (Add Admin)
Exploit Title: SuperMicro IPMI 03.40 - Cross-Site Request Forgery Add Admin Exploit Author: Metin Yunus Kandemir Vendor Homepage: https://www.supermicro.com/ Software Link: https://www.supermicro.com/en/solutions/management-software/bmc-resources Version: X10DRH-iT motherboards with BIOS 2.0a and...
CVE-2020-15046
This CVE (CVE-2020-15046) affects Supermicro X10DRH-iT motherboards with BIOS 2.0a and IPMI firmware 03.40. The web interface exposes a CSRF vulnerability in cgi/config_user.cgi that allows remote attacker to add a new admin user, with fixed versions BIOS 3.2 and IPMI firmware 03.88. Evidenced de...