exploitDog

GHSA-283r-fx38-xwrx

Опубликовано: 07 дек. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 8.8

Описание

The web interface in the Intelligent Platform Management Interface (IPMI) baseboard management controller (BMC) implementation on Supermicro X11 and M11 based devices, with firmware versions before 3.17.02, allows remote authenticated users to execute arbitrary commands via a crafted request targeting vulnerable cgi endpoints.

The web interface in the Intelligent Platform Management Interface (IPMI) baseboard management controller (BMC) implementation on Supermicro X11 and M11 based devices, with firmware versions before 3.17.02, allows remote authenticated users to execute arbitrary commands via a crafted request targeting vulnerable cgi endpoints.

Ссылки

EPSS

Процентиль: 80%

0.01426

Низкий

8.8 High

CVSS3

CVE ID

Связанные уязвимости

CVE-2023-33412

CVSS3: 8.8

nvd

больше 1 года назад

The web interface in the Intelligent Platform Management Interface (IPMI) baseboard management controller (BMC) implementation on Supermicro X11 and M11 based devices, with firmware versions before 3.17.02, allows remote authenticated users to execute arbitrary commands via a crafted request targeting vulnerable cgi endpoints.

BDU:2024-01956

CVSS3: 8.8

fstec

больше 1 года назад

Уязвимость веб-интерфейса BMC IPMI серверов Supermicro, позволяющая нарушителю выполнять произвольные команды

EPSS

Процентиль: 80%

0.01426

Низкий

8.8 High

CVSS3

CVE ID