EUVD-2020-7174

Malware in sbrugna...

CVE-2020-15046

The web interface on Supermicro X10DRH-iT motherboards with BIOS 2.0a and IPMI firmware 03.40 allows remote attackers to exploit a cgi/configuser.cgi CSRF issue to add new admin users. The fixed versions are BIOS 3.2 and firmware 03.88...

SuperMicro IPMI WebInterface 03.40 - Cross-Site Request Forgery (Add Admin)

Exploit Title: SuperMicro IPMI WebInterface 03.40 - Cross-Site Request Forgery Add Admin Exploit Author: Metin Yunus Kandemir Date: 2020-07-15 Vendor Homepage: https://www.supermicro.com/ Version: X10DRH-iT motherboards with BIOS 2.0a and IPMI firmware 03.40 CVE: CVE-2020-15046 Source:...

SuperMicro IPMI 03.40 Cross Site Request Forgery

Exploit Title: SuperMicro IPMI 03.40 - Cross-Site Request Forgery Add Admin Exploit Author: Metin Yunus Kandemir Vendor Homepage: https://www.supermicro.com/ Software Link: https://www.supermicro.com/en/solutions/management-software/bmc-resources Version: X10DRH-iT motherboards with BIOS 2.0a and...

SuperMicro IPMI 03.40 - Cross-Site Request Forgery (Add Admin)

Exploit Title: SuperMicro IPMI 03.40 - Cross-Site Request Forgery Add Admin Exploit Author: Metin Yunus Kandemir Vendor Homepage: https://www.supermicro.com/ Software Link: https://www.supermicro.com/en/solutions/management-software/bmc-resources Version: X10DRH-iT motherboards with BIOS 2.0a and...

SuperMicro Supermicro X10DRH-iT Cross-Site Request Forgery Vulnerability

The SuperMicro Supermicro X10DRH-iT is a server motherboard from SuperMicro USA. A security vulnerability exists in the web interface of the Supermicro X10DRH-iT motherboard BIOS version 2.0a and IPMI firmware version 03.40. The vulnerability can be exploited by a remote attacker to add a new...

CVE-2020-15046

The web interface on Supermicro X10DRH-iT motherboards with BIOS 2.0a and IPMI firmware 03.40 allows remote attackers to exploit a cgi/configuser.cgi CSRF issue to add new admin users. The fixed versions are BIOS 3.2 and firmware 03.88...

Cross site request forgery (csrf)

The web interface on Supermicro X10DRH-iT motherboards with BIOS 2.0a and IPMI firmware 03.40 allows remote attackers to exploit a cgi/configuser.cgi CSRF issue to add new admin users. The fixed versions are BIOS 3.2 and firmware 03.88...

CVE-2020-15046

This CVE (CVE-2020-15046) affects Supermicro X10DRH-iT motherboards with BIOS 2.0a and IPMI firmware 03.40. The web interface exposes a CSRF vulnerability in cgi/config_user.cgi that allows remote attacker to add a new admin user, with fixed versions BIOS 3.2 and IPMI firmware 03.88. Evidenced de...

CVE-2020-15046

The web interface on Supermicro X10DRH-iT motherboards with BIOS 2.0a and IPMI firmware 03.40 allows remote attackers to exploit a cgi/configuser.cgi CSRF issue to add new admin users. The fixed versions are BIOS 3.2 and firmware 03.88...

PT-2020-14142 · Supermicro · Supermicro X10Drh-It

Name of the Vulnerable Software and Affected Versions: Supermicro X10DRH-iT motherboards with BIOS version 2.0a and IPMI firmware version 03.40 Description: The issue allows remote attackers to exploit a CSRF problem in the cgi/config user.cgi file through the web interface, enabling them to add...