ASUS BMC's firmware: path traversal - Delete SOL video file function
Description
The specific function in ASUS BMC’s firmware Web management page (Delete SOL video file function) does not filter the specific parameter. As obtaining the administrator permission, remote attackers can use the means of path traversal to access system files.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Path traversal in ASUS BMC firmware's delete SOL video function allows admin-level remote attackers to read arbitrary system files.
Vulnerability
The ASUS BMC firmware web management page contains a path traversal vulnerability in the "Delete SOL video file" function. The specific function does not properly filter the user-supplied parameter, allowing directory traversal sequences. Affected products and firmware versions include Z10PR-D16 (firmware 1.14.51), ASMB8-iKVM (firmware 1.14.51), and Z10PE-D16 WS (firmware 1.14.2) [1].
Exploitation
An attacker must first obtain administrator-level privileges on the BMC web interface. With those privileges, the attacker can send crafted HTTP requests to the delete video function, inserting path traversal sequences (e.g., ../) in the vulnerable parameter. No additional user interaction or network position beyond authenticated access is required [1].
Impact
Successful exploitation allows the attacker to read arbitrary files on the underlying operating system. This leads to information disclosure of sensitive system files, configuration data, or other protected content. The CVSS score is 4.9 (Medium) with the vector AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N, indicating high confidentiality impact but no impact on integrity or availability [1].
Mitigation
ASUS has released updated firmware versions to address this issue. Users should update the affected products to the corresponding fixed firmware: Z10PR-D16 to 1.16.1, ASMB8-iKVM to 1.16.1, and Z10PE-D16 WS to 1.16.1 [1]. No workarounds are documented in the available references.
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
4- ASUS/BMC firmware for ASMB8-iKVMv5Range: 1.14.51
- ASUS/BMC firmware for Z10PE-D16 WSv5Range: 1.14.2
- ASUS/BMC firmware for Z10PR-D16v5Range: 1.14.51
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
3- www.asus.com/content/ASUS-Product-Security-Advisory/mitrex_refsource_MISC
- www.asus.com/tw/support/callus/mitrex_refsource_MISC
- www.twcert.org.tw/tw/cp-132-4575-2e32d-1.htmlmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.