VYPR
← All advisories
Unrated severityNVD Advisory· Published Apr 6, 2021· Updated Sep 17, 2024

ASUS BMC's firmware: buffer overflow - Service configuration-2 function

CVE-2021-28202

Description

The Service configuration-2 function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to abnormally terminate the Web service.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

ASUS BMC firmware Web management page's Service configuration-2 function lacks input length validation, leading to a buffer overflow that allows authenticated remote attackers to crash the Web service.

Vulnerability

The Service configuration-2 function in the Web management page of ASUS BMC firmware does not validate the length of user-supplied strings, resulting in a buffer overflow vulnerability. This affects multiple ASUS server models running BMC firmware versions prior to the fix. The vulnerable function is reachable via the Web interface after authentication with privileged permissions. [1]

Exploitation

An attacker must first obtain privileged (administrator) credentials to access the Web management page. Once authenticated, the attacker can send a crafted request with an overly long string to the Service configuration-2 function, triggering a buffer overflow that causes the Web service to terminate abnormally. [1]

Impact

Successful exploitation leads to a denial-of-service condition: the BMC Web service crashes, making the management interface unavailable. The impact is limited to availability (CIA: availability only), with no data disclosure or code execution indicated. The attacker requires high privileges, reducing the severity.

Mitigation

ASUS has released firmware updates to address this vulnerability. Affected products should be updated to the fixed versions listed in the vendor advisory, e.g., ASMB9-iKVM 1.15.3 and later. [1] If patching is not immediately possible, restrict network access to the BMC Web interface to trusted users only.

References
  1. ASUS BMC's firmware: buffer overflow - 設定系統配置-1

AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

45
  • Supermicro/BMC firmwarellm-fuzzy
  • ASUS/BMC firmware for ASMB9-iKVMv5
    Range: 1.11.12
  • ASUS/BMC firmware for E700 G4v5
    Range: 1.14.1
  • ASUS/BMC firmware for ESC4000 DHD G4v5
    Range: 1.13.7
  • ASUS/BMC firmware for ESC4000 G4v5
    Range: 1.15.2
  • ASUS/BMC firmware for ESC4000 G4Xv5
    Range: 1.11.6
  • ASUS/BMC firmware for ESC8000 G4v5
    Range: 1.15.4
  • ASUS/BMC firmware for ESC8000 G4/10Gv5
    Range: 1.15.4
  • ASUS/BMC firmware for KNPA-U16v5
    Range: 1.13.4
  • ASUS/BMC firmware for Pro E800 G4v5
    Range: 1.14.2
  • ASUS/BMC firmware for RS100-E10-PI2v5
    Range: 1.13.6
  • ASUS/BMC firmware for RS300-E10-PS4v5
    Range: 1.13.6
  • ASUS/BMC firmware for RS300-E10-RS4v5
    Range: 1.13.6
  • ASUS/BMC firmware for RS500A-E10-PS4v5
    Range: 1.15.2
  • ASUS/BMC firmware for RS500A-E10-RS4v5
    Range: 1.15.2
  • ASUS/BMC firmware for RS500A-E9-PS4v5
    Range: 1.14.1
  • ASUS/BMC firmware for RS500A-E9 RS4v5
    Range: 1.14.1
  • ASUS/BMC firmware for RS500A-E9-RS4v5
    Range: 1.14.1
  • ASUS/BMC firmware for RS500-E9-PS4v5
    Range: 1.15.4
  • ASUS/BMC firmware for RS500-E9-RS4v5
    Range: 1.15.4
  • ASUS/BMC firmware for RS500-E9-RS4-Uv5
    Range: 1.15.4
  • ASUS/BMC firmware for RS520-E9-RS12-Ev5
    Range: 1.15.3
  • ASUS/BMC firmware for RS520-E9-RS8v5
    Range: 1.15.3
  • ASUS/BMC firmware for RS700A-E9-RS12V2v5
    Range: 1.15.1
  • ASUS/BMC firmware for RS700A-E9-RS4v5
    Range: 1.10.0
  • ASUS/BMC firmware for RS700A-E9-RS4V2v5
    Range: 1.15.1
  • ASUS/BMC firmware for RS700-E9-RS12v5
    Range: 1.11.5
  • ASUS/BMC firmware for RS700-E9-RS4v5
    Range: 1.09
  • ASUS/BMC firmware for RS720A-E9-RS12V2v5
    Range: 1.15.2
  • ASUS/BMC firmware for RS720A-E9-RS24-Ev5
    Range: 1.10.3
  • ASUS/BMC firmware for RS720A-E9-RS24V2v5
    Range: 1.15.1
  • ASUS/BMC firmware for RS720-E9-RS12-Ev5
    Range: 1.15.2
  • ASUS/BMC firmware for RS720-E9-RS24-Uv5
    Range: 1.14.3
  • ASUS/BMC firmware for RS720-E9-RS8-Gv5
    Range: 1.15.2
  • ASUS/BMC firmware for RS720Q-E9-RS24-Sv5
    Range: 1.15.0
  • ASUS/BMC firmware for RS720Q-E9-RS8v5
    Range: 1.15.0
  • ASUS/BMC firmware for RS720Q-E9-RS8-Sv5
    Range: 1.15.0
  • ASUS/BMC firmware for WS C422 PRO/SEv5
    Range: 1.14.1
  • ASUS/BMC firmware for WS C621E SAGEv5
    Range: 1.15.1
  • ASUS/BMC firmware for WS X299 PRO/SEv5
    Range: 1.14.1
  • ASUS/BMC firmware for Z11PA-D8v5
    Range: 1.14.1
  • ASUS/BMC firmware for Z11PA-D8Cv5
    Range: 1.14.1
  • ASUS/BMC firmware for Z11PA-U12v5
    Range: 1.15.1
  • ASUS/BMC firmware for Z11PA-U12/10G-2Sv5
    Range: 1.15.1
  • ASUS/BMC firmware for Z11PR-D16v5
    Range: 1.15.3

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

3

News mentions

0

No linked articles in our index yet.