exploitDog

GHSA-6rpv-x4qm-m5rx

Опубликовано: 04 фев. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 7.2

Описание

A security issue in the firmware image verification implementation

at Supermicro MBD-X12DPG-OA6. An attacker can upload a specially crafted image that will cause a stack overflow is caused by not checking fld->used_bytes.

A security issue in the firmware image verification implementation

at Supermicro MBD-X12DPG-OA6. An attacker can upload a specially crafted image that will cause a stack overflow is caused by not checking fld->used_bytes.

Ссылки

EPSS

Процентиль: 44%

0.00216

Низкий

7.2 High

CVSS3

CVE ID

Дефекты

CWE-121

Связанные уязвимости

CVE-2024-10238

CVSS3: 7.2

nvd

около 1 года назад

A security issue in the firmware image verification implementation at Supermicro MBD-X12DPG-OA6. An attacker can upload a specially crafted image that will cause a stack overflow is caused by not checking fld->used_bytes.

EPSS

Процентиль: 44%

0.00216

Низкий

7.2 High

CVSS3

CVE ID

Дефекты

CWE-121