The web interface on Supermicro X10DRH-iT motherboards with BIOS 2.0a and IPMI firmware 03.40 allows remote attackers to exploit a cgi/config_user.cgi CSRF issue to add new admin users. The fixed versions are BIOS 3.2 and firmware 03.88.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2020-06-24T22:25:57
Updated: 2024-08-04T13:00:52.192Z
Reserved: 2020-06-24T00:00:00
Link: CVE-2020-15046
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2020-06-24T23:15:10.670
Modified: 2024-02-14T01:17:43.863
Link: CVE-2020-15046
Redhat
No data.