BMC firmware

CVEs (18)

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	Published	Description
CVE-2024-36435	Supermicro BMC firmware	Cri	0.65	9.8	0.13	Jul 11, 2024	An issue was discovered on Supermicro BMC firmware in select X11, X12, H12, B12, X13, H13, and B13 motherboards (and CMM6 modules). An unauthenticated user can post crafted data to the interface that triggers a stack buffer overflow, and may lead to arbitrary remote code…
CVE-2025-12007	Supermicro BMC firmware	Hig	0.55	8.4	0.00	Jan 16, 2026	There is a vulnerability in the Supermicro BMC firmware validation logic at Supermicro MBD-X13SEM-F . An attacker can update the system firmware with a specially crafted image.
CVE-2023-33411	Supermicro BMC firmware		0.00	—	0.02	Dec 7, 2023	A web server in the Intelligent Platform Management Interface (IPMI) baseboard management controller (BMC) implementation on Supermicro X11 and M11 based devices, with firmware versions up to 3.17.02, allows remote unauthenticated users to perform directory traversal,…
CVE-2022-43309	Supermicro BMC firmware		0.00	—	0.00	Apr 7, 2023	Supermicro X11SSL-CF HW Rev 1.01, BMC firmware v1.63 was discovered to contain insecure permissions.
CVE-2021-28208	Supermicro BMC firmware		0.00	—	0.00	Apr 6, 2021	The specific function in ASUS BMC’s firmware Web management page (Get video file function) does not filter the specific parameter. As obtaining the administrator permission, remote attackers can use the means of path traversal to access system files.
CVE-2021-28207	Supermicro BMC firmware		0.00	—	0.00	Apr 6, 2021	The specific function in ASUS BMC’s firmware Web management page (Get Help file function) does not filter the specific parameter. As obtaining the administrator permission, remote attackers can use the means of path traversal to access system files.
CVE-2021-28206	Supermicro BMC firmware		0.00	—	0.00	Apr 6, 2021	The specific function in ASUS BMC’s firmware Web management page (Record video file function) does not filter the specific parameter. As obtaining the administrator permission, remote attackers can use the means of path traversal to access system files.
CVE-2021-28205	Supermicro BMC firmware		0.00	—	0.00	Apr 6, 2021	The specific function in ASUS BMC’s firmware Web management page (Delete SOL video file function) does not filter the specific parameter. As obtaining the administrator permission, remote attackers can use the means of path traversal to access system files.
CVE-2021-28204	Supermicro BMC firmware		0.00	—	0.06	Apr 6, 2021	The specific function in ASUS BMC’s firmware Web management page (Modify user’s information function) does not filter the specific parameter. As obtaining the administrator permission, remote attackers can launch command injection to execute command arbitrary.
CVE-2021-28202	Supermicro BMC firmware		0.00	—	0.01	Apr 6, 2021	The Service configuration-2 function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to abnormally terminate…
CVE-2021-28195	Supermicro BMC firmware		0.00	—	0.01	Apr 6, 2021	The Radius configuration function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to abnormally terminate the…
CVE-2021-28193	Supermicro BMC firmware		0.00	—	0.01	Apr 6, 2021	The SMTP configuration function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to abnormally terminate the Web…
CVE-2021-28189	Supermicro BMC firmware		0.00	—	0.01	Apr 6, 2021	The SMTP configuration function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to abnormally terminate the Web…
CVE-2021-28184	Supermicro BMC firmware		0.00	—	0.01	Apr 6, 2021	The Active Directory configuration function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to abnormally…
CVE-2021-28183	Supermicro BMC firmware		0.00	—	0.01	Apr 6, 2021	The specific function in ASUS BMC’s firmware Web management page (Web License configuration setting) does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to…
CVE-2021-28181	Supermicro BMC firmware		0.00	—	0.01	Apr 6, 2021	The specific function in ASUS BMC’s firmware Web management page (Remote video configuration setting) does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to…
CVE-2021-28176	Supermicro BMC firmware		0.00	—	0.01	Apr 6, 2021	The DNS configuration function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to abnormally terminate the Web…
CVE-2021-28175	Supermicro BMC firmware		0.00	—	0.01	Apr 6, 2021	The Radius configuration function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to abnormally terminate the…

CVE-2024-36435CriJul 11, 2024
Supermicro
BMC firmware
risk 0.65cvss 9.8epss 0.13
An issue was discovered on Supermicro BMC firmware in select X11, X12, H12, B12, X13, H13, and B13 motherboards (and CMM6 modules). An unauthenticated user can post crafted data to the interface that triggers a stack buffer overflow, and may lead to arbitrary remote code…
CVE-2025-12007HigJan 16, 2026
Supermicro
BMC firmware
risk 0.55cvss 8.4epss 0.00
There is a vulnerability in the Supermicro BMC firmware validation logic at Supermicro MBD-X13SEM-F . An attacker can update the system firmware with a specially crafted image.
CVE-2023-33411Dec 7, 2023
Supermicro
BMC firmware
risk 0.00cvss —epss 0.02
A web server in the Intelligent Platform Management Interface (IPMI) baseboard management controller (BMC) implementation on Supermicro X11 and M11 based devices, with firmware versions up to 3.17.02, allows remote unauthenticated users to perform directory traversal,…
CVE-2022-43309Apr 7, 2023
Supermicro
BMC firmware
risk 0.00cvss —epss 0.00
Supermicro X11SSL-CF HW Rev 1.01, BMC firmware v1.63 was discovered to contain insecure permissions.
CVE-2021-28208Apr 6, 2021
Supermicro
BMC firmware
risk 0.00cvss —epss 0.00
The specific function in ASUS BMC’s firmware Web management page (Get video file function) does not filter the specific parameter. As obtaining the administrator permission, remote attackers can use the means of path traversal to access system files.
CVE-2021-28207Apr 6, 2021
Supermicro
BMC firmware
risk 0.00cvss —epss 0.00
The specific function in ASUS BMC’s firmware Web management page (Get Help file function) does not filter the specific parameter. As obtaining the administrator permission, remote attackers can use the means of path traversal to access system files.
CVE-2021-28206Apr 6, 2021
Supermicro
BMC firmware
risk 0.00cvss —epss 0.00
The specific function in ASUS BMC’s firmware Web management page (Record video file function) does not filter the specific parameter. As obtaining the administrator permission, remote attackers can use the means of path traversal to access system files.
CVE-2021-28205Apr 6, 2021
Supermicro
BMC firmware
risk 0.00cvss —epss 0.00
The specific function in ASUS BMC’s firmware Web management page (Delete SOL video file function) does not filter the specific parameter. As obtaining the administrator permission, remote attackers can use the means of path traversal to access system files.
CVE-2021-28204Apr 6, 2021
Supermicro
BMC firmware
risk 0.00cvss —epss 0.06
The specific function in ASUS BMC’s firmware Web management page (Modify user’s information function) does not filter the specific parameter. As obtaining the administrator permission, remote attackers can launch command injection to execute command arbitrary.
CVE-2021-28202Apr 6, 2021
Supermicro
BMC firmware
risk 0.00cvss —epss 0.01
The Service configuration-2 function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to abnormally terminate…
CVE-2021-28195Apr 6, 2021
Supermicro
BMC firmware
risk 0.00cvss —epss 0.01
The Radius configuration function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to abnormally terminate the…
CVE-2021-28193Apr 6, 2021
Supermicro
BMC firmware
risk 0.00cvss —epss 0.01
The SMTP configuration function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to abnormally terminate the Web…
CVE-2021-28189Apr 6, 2021
Supermicro
BMC firmware
risk 0.00cvss —epss 0.01
The SMTP configuration function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to abnormally terminate the Web…
CVE-2021-28184Apr 6, 2021
Supermicro
BMC firmware
risk 0.00cvss —epss 0.01
The Active Directory configuration function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to abnormally…
CVE-2021-28183Apr 6, 2021
Supermicro
BMC firmware
risk 0.00cvss —epss 0.01
The specific function in ASUS BMC’s firmware Web management page (Web License configuration setting) does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to…
CVE-2021-28181Apr 6, 2021
Supermicro
BMC firmware
risk 0.00cvss —epss 0.01
The specific function in ASUS BMC’s firmware Web management page (Remote video configuration setting) does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to…
CVE-2021-28176Apr 6, 2021
Supermicro
BMC firmware
risk 0.00cvss —epss 0.01
The DNS configuration function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to abnormally terminate the Web…
CVE-2021-28175Apr 6, 2021
Supermicro
BMC firmware
risk 0.00cvss —epss 0.01
The Radius configuration function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to abnormally terminate the…