Description
The specific function in ASUS BMC’s firmware Web management page (Get video file function) does not filter the specific parameter. As obtaining the administrator permission, remote attackers can use the means of path traversal to access system files.
Published: 2021-04-06
Score: 4.9 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

No analysis available yet.

Remediation

Vendor Solution

update BMC's firmwares to the following versions: ESC4000 G4X 1.15.6 RS700-E9-RS12 1.15.4 RS100-E10-PI2 1.15.3 RS300-E10-PS4 1.15.3 RS300-E10-RS4 1.15.3 RS500A-E9-PS4 1.14.2 RS500A-E9-RS4 1.14.2 RS500A-E9 RS4 U 1.14.2 E700 G4 1.14.2 WS C422 PRO/SE 1.14.2 WS X299 PRO/SE 1.14.2 Z11PA-U12 1.15.2 KNPA-U16 1.14.5 ESC4000 DHD G4 1.15.2 ESC4000 G4 1.15.6 RS720Q-E9-RS24-S 1.15.1 RS720Q-E9-RS8 1.15.1 RS720Q-E9-RS8-S 1.15.1 Z11PA-D8 1.15.2 Z11PA-D8C 1.15.2 RS720-E9-RS24-U 1.15.5 RS720-E9-RS8-G 1.15.4 RS500-E9-PS4 1.15.5 Pro E800 G4 1.15.2 RS500-E9-RS4 1.15.5 RS500-E9-RS4-U 1.15.5 RS520-E9-RS12-E 1.15.4 RS520-E9-RS8 1.15.4 ESC8000 G4 1.15.5 ESC8000 G4/10G 1.15.5 RS720-E9-RS12-E 1.15.3 WS C621E SAGE 1.15.3 RS500A-E10-PS4 1.15.3 RS500A-E10-RS4 1.15.3 RS700A-E9-RS12V2 1.15.3 RS700A-E9-RS4V2 1.15.3 RS720A-E9-RS12V2 1.15.3 RS720A-E9-RS24V2 1.15.3 Z11PR-D16 1.15.4

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
EUVD EUVD EUVD-2021-14898 The specific function in ASUS BMC’s firmware Web management page (Get video file function) does not filter the specific parameter. As obtaining the administrator permission, remote attackers can use the means of path traversal to access system files.
History

No history.

Subscriptions

Asus Asmb9-ikvm Asmb9-ikvm Firmware E700 G4 E700 G4 Firmware Esc4000 Dhd G4 Esc4000 Dhd G4 Firmware Esc4000 G4 Esc4000 G4 Firmware Esc4000 G4x Esc4000 G4x Firmware Esc8000 G4 Esc8000 G4\/10g Esc8000 G4\/10g Firmware Esc8000 G4 Firmware Knpa-u16 Knpa-u16 Firmware Pro E800 G4 Pro E800 G4 Firmware Rs100-e10-pi2 Rs100-e10-pi2 Firmware Rs300-e10-ps4 Rs300-e10-ps4 Firmware Rs300-e10-rs4 Rs300-e10-rs4 Firmware Rs500-e9-ps4 Rs500-e9-ps4 Firmware Rs500-e9-rs4 Rs500-e9-rs4-u Rs500-e9-rs4-u Firmware Rs500-e9-rs4 Firmware Rs500a-e10-ps4 Rs500a-e10-ps4 Firmware Rs500a-e10-rs4 Rs500a-e10-rs4 Firmware Rs500a-e9-ps4 Rs500a-e9-ps4 Firmware Rs500a-e9-rs4 Rs500a-e9-rs4 Firmware Rs500a-e9 Rs4 U Rs500a-e9 Rs4 U Firmware Rs520-e9-rs12-e Rs520-e9-rs12-e Firmware Rs520-e9-rs8 Rs520-e9-rs8 Firmware Rs700-e9-rs12 Rs700-e9-rs12 Firmware Rs700-e9-rs4 Rs700-e9-rs4 Firmware Rs700a-e9-rs12v2 Rs700a-e9-rs12v2 Firmware Rs700a-e9-rs4 Rs700a-e9-rs4 Firmware Rs700a-e9-rs4v2 Rs700a-e9-rs4v2 Firmware Rs720-e9-rs12-e Rs720-e9-rs12-e Firmware Rs720-e9-rs24-u Rs720-e9-rs24-u Firmware Rs720-e9-rs8-g Rs720-e9-rs8-g Firmware Rs720a-e9-rs12v2 Rs720a-e9-rs12v2 Firmware Rs720a-e9-rs24-e Rs720a-e9-rs24-e Firmware Rs720a-e9-rs24v2 Rs720a-e9-rs24v2 Firmware Rs720q-e9-rs24-s Rs720q-e9-rs24-s Firmware Rs720q-e9-rs8 Rs720q-e9-rs8-s Rs720q-e9-rs8-s Firmware Rs720q-e9-rs8 Firmware Ws C422 Pro\/se Ws C422 Pro\/se Firmware Ws C621e Sage Ws C621e Sage Firmware Ws X299 Pro\/se Ws X299 Pro\/se Firmware Z11pa-d8 Z11pa-d8 Firmware Z11pa-d8c Z11pa-d8c Firmware Z11pa-u12 Z11pa-u12\/10g-2s Z11pa-u12\/10g-2s Firmware Z11pa-u12 Firmware Z11pr-d16 Z11pr-d16 Firmware
cve-icon MITRE

Status: PUBLISHED

Assigner: twcert

Published:

Updated: 2024-09-16T22:19:36.654Z

Reserved: 2021-03-12T00:00:00.000Z

Link: CVE-2021-28208

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2021-04-06T05:15:17.393

Modified: 2024-11-21T05:59:21.967

Link: CVE-2021-28208

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.

Weaknesses