4 matches found
CVE-2013-3619
CVE-2013-3619 affects Supermicro IPMI firmware on X9 generation (before SMT_X9_317) and X8 generation (before SMT_X8_312). The root cause is hardcoded private encryption keys used by the Lighttpd SSL interface and the Dropbear SSH daemon within the IPMI firmware, enabling potential impersonation,...
CVE-2013-3619
creationtimestamp| type| source ---|---|--- 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/http/smtipmistaticcertscanner.rb 2020-01-02 20:49:18+00:00| seen| https://t.me/cibsecurity/8955 2025-02-06 03:13:41+00:00| seen|...
Supermicro Onboard IPMI Static SSL Certificate Scanner Information Disclosure (CVE-2013-3619)
An SSL keys handling flaw has been reported in Supermicro IPMI firmware...
Supermicro Onboard IPMI Static SSL Certificate Scanner
This module checks for a static SSL certificate shipped with Supermicro Onboard IPMI controllers. An attacker with access to the publicly-available firmware can perform man-in-the-middle attacks and offline decryption of communication to the controller. This module has been on a Supermicro Onboar...