cbcvebase.
CVE-2023-33411
published 2023-12-07

CVE-2023-33411: A web server in the Intelligent Platform Management Interface (IPMI) baseboard management controller (BMC) implementation on Supermicro X11 and M11 based…

high7.5CVSS 3.1
AVNACLPRNUINSUCHINAN
A web server in the Intelligent Platform Management Interface (IPMI) baseboard management controller (BMC) implementation on Supermicro X11 and M11 based devices, with firmware versions up to 3.17.02, allows remote unauthenticated users to perform directory traversal, potentially disclosing sensitive information.

Affected

362 ranges· showing 25
VendorProductVersion rangeFixed in
supermicrob12dpe-6_firmware<= 3.17.02
supermicrob12dpt-6_firmware<= 3.17.02
supermicrob12spe-cpu-25g_firmware<= 3.17.02
supermicrob13dee_firmware<= 3.17.02
supermicrob13det_firmware<= 3.17.02
supermicrob13see-cpu-25g_firmware<= 3.17.02
supermicrob13seg_firmware<= 3.17.02
supermicroc9x299-pg300_firmware<= 3.17.02
supermicroc9x299-pg300f_firmware<= 3.17.02
supermicroc9x299-pg_firmware<= 3.17.02
supermicroc9x299-pgf-l_firmware<= 3.17.02
supermicroc9x299-pgf_firmware<= 3.17.02
supermicroc9x299-rpgf-l_firmware<= 3.17.02
supermicroc9x299-rpgf_firmware<= 3.17.02
supermicroh12dgo-6_firmware<= 3.17.02
supermicroh12dgq-nt6_firmware<= 3.17.02
supermicroh12dsg-o-cpu_firmware<= 3.17.02
supermicroh12dsg-q-cpu6_firmware<= 3.17.02
supermicroh12dsi-n6_firmware<= 3.17.02
supermicroh12dsi-nt6_firmware<= 3.17.02
supermicroh12dst-b_firmware<= 3.17.02
supermicroh12dsu-in_firmware<= 3.17.02
supermicroh12dsu-inr_firmware<= 3.17.02
supermicroh12ssff-an6_firmware<= 3.17.02
supermicroh12ssfr-an6_firmware<= 3.17.02