CVE-2023-35861 - Vulnerability Details

A shell-injection vulnerability in email notifications on Supermicro motherboards (such as H12DST-B before 03.10.35) allows remote attackers to inject execute arbitrary commands as root on the BMC.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00972.

Exploitation poc

Automatable yes

Technical Impact total

Vendors	Products
Supermicro	H12dgo-6 H12dgo-6 Firmware H12dgq-nt6 H12dgq-nt6 Firmware H12dsg-o-cpu H12dsg-o-cpu Firmware H12dsg-q-cpu6 H12dsg-q-cpu6 Firmware H12dsi-n6 H12dsi-n6 Firmware H12dsi-nt6 H12dsi-nt6 Firmware H12dst-b H12dst-b Firmware H12dsu-in H12dsu-in Firmware H12dsu-inr H12dsu-inr Firmware H12ssff-an6 H12ssff-an6 Firmware H12ssfr-an6 H12ssfr-an6 Firmware H12ssg-an6 H12ssg-an6 Firmware H12ssg-anp6 H12ssg-anp6 Firmware H12ssl-c H12ssl-c Firmware H12ssl-ct H12ssl-ct Firmware H12ssl-i H12ssl-i Firmware H12ssl-nt H12ssl-nt Firmware H12sst-ps H12sst-ps Firmware H12ssw-an6 H12ssw-an6 Firmware H12ssw-in H12ssw-in Firmware H12ssw-inl H12ssw-inl Firmware H12ssw-inr H12ssw-inr Firmware H12ssw-nt H12ssw-nt Firmware H12ssw-ntl H12ssw-ntl Firmware H12ssw-ntr H12ssw-ntr Firmware H13dsg-o-cpu H13dsg-o-cpu-d H13dsg-o-cpu-d Firmware H13dsg-o-cpu Firmware H13dsh H13dsh Firmware H13sae-mf H13sae-mf Firmware H13srd-f H13srd-f Firmware H13ssf H13ssf Firmware H13ssh H13ssh Firmware H13ssl-n H13ssl-n Firmware H13ssl-nt H13ssl-nt Firmware H13sst-g H13sst-g Firmware H13sst-gc H13sst-gc Firmware H13ssw H13ssw Firmware X12dai-n6 X12dai-n6 Firmware X12ddw-a6 X12ddw-a6 Firmware X12dgo-6 X12dgo-6 Firmware X12dgq-r X12dgq-r Firmware X12dgu X12dgu Firmware X12dhm-6 X12dhm-6 Firmware X12dpd-a6m25 X12dpd-a6m25 Firmware X12dpfr-an6 X12dpfr-an6 Firmware X12dpg-ar X12dpg-ar Firmware X12dpg-oa6 X12dpg-oa6-gd2 X12dpg-oa6-gd2 Firmware X12dpg-oa6 Firmware X12dpg-qbt6 X12dpg-qbt6 Firmware X12dpg-qr X12dpg-qr Firmware X12dpg-qt6 X12dpg-qt6 Firmware X12dpg-u6 X12dpg-u6 Firmware X12dpi-n6 X12dpi-n6 Firmware X12dpi-nt6 X12dpi-nt6 Firmware X12dpl-i6 X12dpl-i6 Firmware X12dpl-nt6 X12dpl-nt6 Firmware X12dpt-b6 X12dpt-b6 Firmware X12dpt-pt46 X12dpt-pt46 Firmware X12dpt-pt6 X12dpt-pt6 Firmware X12dpu-6 X12dpu-6 Firmware X12dsc-6 X12dsc-6 Firmware X12qch\+ X12qch\+ Firmware X12sae X12sae-5 X12sae-5 Firmware X12sae Firmware X12sca-5f X12sca-5f Firmware X12sca-f X12sca-f Firmware X12scq X12scq Firmware X12scv-lvds X12scv-lvds Firmware X12scv-w X12scv-w Firmware X12scz-f X12scz-f Firmware X12scz-qf X12scz-qf Firmware X12scz-tln4f X12scz-tln4f Firmware X12sdv-10c-sp6f X12sdv-10c-sp6f Firmware X12sdv-10c-spt4f X12sdv-10c-spt4f Firmware X12sdv-14c-spt8f X12sdv-14c-spt8f Firmware X12sdv-16c-spt8f X12sdv-16c-spt8f Firmware X12sdv-20c-spt8f X12sdv-20c-spt8f Firmware X12sdv-4c-sp6f X12sdv-4c-sp6f Firmware X12sdv-4c-spt4f X12sdv-4c-spt4f Firmware X12sdv-4c-spt8f X12sdv-4c-spt8f Firmware X12sdv-8c-sp6f X12sdv-8c-sp6f Firmware X12sdv-8c-spt4f X12sdv-8c-spt4f Firmware X12sdv-8c-spt8f X12sdv-8c-spt8f Firmware X12sdv-8ce-sp4f X12sdv-8ce-sp4f Firmware X12spa-tf X12spa-tf Firmware X12sped-f X12sped-f Firmware X12spg-nf X12spg-nf Firmware X12spi-tf X12spi-tf Firmware X12spl-f X12spl-f Firmware X12spl-ln4f X12spl-ln4f Firmware X12spm-ln4f X12spm-ln4f Firmware X12spm-ln6tf X12spm-ln6tf Firmware X12spm-tf X12spm-tf Firmware X12spo-f X12spo-f Firmware X12spo-ntf X12spo-ntf Firmware X12spt-g X12spt-g Firmware X12spt-gc X12spt-gc Firmware X12spt-pt X12spt-pt Firmware X12spw-f X12spw-f Firmware X12spw-tf X12spw-tf Firmware X12spz-ln4f X12spz-ln4f Firmware X12spz-spln6f X12spz-spln6f Firmware X12std-f X12std-f Firmware X12ste-f X12ste-f Firmware X12sth-f X12sth-f Firmware X12sth-ln4f X12sth-ln4f Firmware X12sth-sys X12sth-sys Firmware X12stl-f X12stl-f Firmware X12stl-if X12stl-if Firmware X12stn-c X12stn-c-wohs X12stn-c-wohs Firmware X12stn-c Firmware X12stn-e X12stn-e-wohs X12stn-e-wohs Firmware X12stn-e Firmware X12stn-h X12stn-h-wohs X12stn-h-wohs Firmware X12stn-h Firmware X12stn-l X12stn-l-wohs X12stn-l-wohs Firmware X12stn-l Firmware X12stw-f X12stw-f Firmware X12stw-tf X12stw-tf Firmware X13dai-t X13dai-t Firmware X13ddw-a X13ddw-a Firmware X13deg-oa X13deg-oa Firmware X13deg-oad X13deg-oad Firmware X13deg-pvc X13deg-pvc Firmware X13deg-qt X13deg-qt Firmware X13dei X13dei-t X13dei-t Firmware X13dei Firmware X13dem X13dem Firmware X13det-b X13det-b Firmware X13dgu X13dgu Firmware X13dsf-a X13dsf-a Firmware X13qeh\+ X13qeh\+ Firmware X13sae X13sae-f X13sae-f Firmware X13sae Firmware X13san-c X13san-c-wohs X13san-c-wohs Firmware X13san-c Firmware X13san-e X13san-e-wohs X13san-e-wohs Firmware X13san-e Firmware X13san-h X13san-h-wohs X13san-h-wohs Firmware X13san-h Firmware X13san-l X13san-l-wohs X13san-l-wohs Firmware X13san-l Firmware X13saq X13saq Firmware X13sav-lvds X13sav-lvds Firmware X13sav-ps X13sav-ps Firmware X13saz-f X13saz-f Firmware X13saz-q X13saz-q Firmware X13sedw-f X13sedw-f Firmware X13seed-f X13seed-f Firmware X13seed-sf X13seed-sf Firmware X13sefr-a X13sefr-a Firmware X13sei-f X13sei-f Firmware X13sei-tf X13sei-tf Firmware X13sem-f X13sem-f Firmware X13sem-tf X13sem-tf Firmware X13set-g X13set-g Firmware X13set-gc X13set-gc Firmware X13sew-f X13sew-f Firmware X13sew-tf X13sew-tf Firmware X13sra-tf X13sra-tf Firmware X13srn-e X13srn-e-wohs X13srn-e-wohs Firmware X13srn-e Firmware X13srn-h X13srn-h-wohs X13srn-h-wohs Firmware X13srn-h Firmware X13swa-tf X13swa-tf Firmware

Configuration 1 [-]

AND

cpe:2.3:o:supermicro:h12dst-b_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:h12dst-b:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND

cpe:2.3:o:supermicro:x13dai-t_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x13dai-t:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND

cpe:2.3:o:supermicro:x13ddw-a_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x13ddw-a:-:*:*:*:*:*:*:*

Configuration 4 [-]

AND

cpe:2.3:o:supermicro:x13deg-oa_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x13deg-oa:-:*:*:*:*:*:*:*

Configuration 5 [-]

AND

cpe:2.3:o:supermicro:x13deg-oad_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x13deg-oad:-:*:*:*:*:*:*:*

Configuration 6 [-]

AND

cpe:2.3:o:supermicro:x13deg-pvc_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x13deg-pvc:-:*:*:*:*:*:*:*

Configuration 7 [-]

AND

cpe:2.3:o:supermicro:x13deg-qt_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x13deg-qt:-:*:*:*:*:*:*:*

Configuration 8 [-]

AND

cpe:2.3:o:supermicro:x13dei_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x13dei:-:*:*:*:*:*:*:*

Configuration 9 [-]

AND

cpe:2.3:o:supermicro:x13dei-t_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x13dei-t:-:*:*:*:*:*:*:*

Configuration 10 [-]

AND

cpe:2.3:o:supermicro:x13dem_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x13dem:-:*:*:*:*:*:*:*

Configuration 11 [-]

AND

cpe:2.3:o:supermicro:x13det-b_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x13det-b:-:*:*:*:*:*:*:*

Configuration 12 [-]

AND

cpe:2.3:o:supermicro:x13dgu_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x13dgu:-:*:*:*:*:*:*:*

Configuration 13 [-]

AND

cpe:2.3:o:supermicro:x13dsf-a_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x13dsf-a:-:*:*:*:*:*:*:*

Configuration 14 [-]

AND

cpe:2.3:o:supermicro:x13qeh\+_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x13qeh\+:-:*:*:*:*:*:*:*

Configuration 15 [-]

AND

cpe:2.3:o:supermicro:x13sae_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x13sae:-:*:*:*:*:*:*:*

Configuration 16 [-]

AND

cpe:2.3:o:supermicro:x13sae-f_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x13sae-f:-:*:*:*:*:*:*:*

Configuration 17 [-]

AND

cpe:2.3:o:supermicro:x13san-c_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x13san-c:-:*:*:*:*:*:*:*

Configuration 18 [-]

AND

cpe:2.3:o:supermicro:x13san-c-wohs_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x13san-c-wohs:-:*:*:*:*:*:*:*

Configuration 19 [-]

AND

cpe:2.3:o:supermicro:x13san-e_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x13san-e:-:*:*:*:*:*:*:*

Configuration 20 [-]

AND

cpe:2.3:o:supermicro:x13san-e-wohs_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x13san-e-wohs:-:*:*:*:*:*:*:*

Configuration 21 [-]

AND

cpe:2.3:o:supermicro:x13san-h_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x13san-h:-:*:*:*:*:*:*:*

Configuration 22 [-]

AND

cpe:2.3:o:supermicro:x13san-h-wohs_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x13san-h-wohs:-:*:*:*:*:*:*:*

Configuration 23 [-]

AND

cpe:2.3:o:supermicro:x13san-l_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x13san-l:-:*:*:*:*:*:*:*

Configuration 24 [-]

AND

cpe:2.3:o:supermicro:x13san-l-wohs_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x13san-l-wohs:-:*:*:*:*:*:*:*

Configuration 25 [-]

AND

cpe:2.3:o:supermicro:x13saq_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x13saq:-:*:*:*:*:*:*:*

Configuration 26 [-]

AND

cpe:2.3:o:supermicro:x13sav-lvds_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x13sav-lvds:-:*:*:*:*:*:*:*

Configuration 27 [-]

AND

cpe:2.3:o:supermicro:x13sav-ps_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x13sav-ps:-:*:*:*:*:*:*:*

Configuration 28 [-]

AND

cpe:2.3:o:supermicro:x13saz-f_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x13saz-f:-:*:*:*:*:*:*:*

Configuration 29 [-]

AND

cpe:2.3:o:supermicro:x13saz-q_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x13saz-q:-:*:*:*:*:*:*:*

Configuration 30 [-]

AND

cpe:2.3:o:supermicro:x13sedw-f_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x13sedw-f:-:*:*:*:*:*:*:*

Configuration 31 [-]

AND

cpe:2.3:o:supermicro:x13seed-f_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x13seed-f:-:*:*:*:*:*:*:*

Configuration 32 [-]

AND

cpe:2.3:o:supermicro:x13seed-sf_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x13seed-sf:-:*:*:*:*:*:*:*

Configuration 33 [-]

AND

cpe:2.3:o:supermicro:x13sefr-a_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x13sefr-a:-:*:*:*:*:*:*:*

Configuration 34 [-]

AND

cpe:2.3:o:supermicro:x13sei-f_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x13sei-f:-:*:*:*:*:*:*:*

Configuration 35 [-]

AND

cpe:2.3:o:supermicro:x13sei-tf_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x13sei-tf:-:*:*:*:*:*:*:*

Configuration 36 [-]

AND

cpe:2.3:o:supermicro:x13sem-f_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x13sem-f:-:*:*:*:*:*:*:*

Configuration 37 [-]

AND

cpe:2.3:o:supermicro:x13sem-tf_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x13sem-tf:-:*:*:*:*:*:*:*

Configuration 38 [-]

AND

cpe:2.3:o:supermicro:x13set-g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x13set-g:-:*:*:*:*:*:*:*

Configuration 39 [-]

AND

cpe:2.3:o:supermicro:x13set-gc_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x13set-gc:-:*:*:*:*:*:*:*

Configuration 40 [-]

AND

cpe:2.3:o:supermicro:x13sew-f_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x13sew-f:-:*:*:*:*:*:*:*

Configuration 41 [-]

AND

cpe:2.3:o:supermicro:x13sew-tf_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x13sew-tf:-:*:*:*:*:*:*:*

Configuration 42 [-]

AND

cpe:2.3:o:supermicro:x13sra-tf_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x13sra-tf:-:*:*:*:*:*:*:*

Configuration 43 [-]

AND

cpe:2.3:o:supermicro:x13srn-e_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x13srn-e:-:*:*:*:*:*:*:*

Configuration 44 [-]

AND

cpe:2.3:o:supermicro:x13srn-e-wohs_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x13srn-e-wohs:-:*:*:*:*:*:*:*

Configuration 45 [-]

AND

cpe:2.3:o:supermicro:x13srn-h_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x13srn-h:-:*:*:*:*:*:*:*

Configuration 46 [-]

AND

cpe:2.3:o:supermicro:x13srn-h-wohs_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x13srn-h-wohs:-:*:*:*:*:*:*:*

Configuration 47 [-]

AND

cpe:2.3:o:supermicro:x13swa-tf_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x13swa-tf:-:*:*:*:*:*:*:*

Configuration 48 [-]

AND

cpe:2.3:o:supermicro:h13dsg-o-cpu_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:h13dsg-o-cpu:-:*:*:*:*:*:*:*

Configuration 49 [-]

AND

cpe:2.3:o:supermicro:h13dsg-o-cpu-d_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:h13dsg-o-cpu-d:-:*:*:*:*:*:*:*

Configuration 50 [-]

AND

cpe:2.3:o:supermicro:h13dsh_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:h13dsh:-:*:*:*:*:*:*:*

Configuration 51 [-]

AND

cpe:2.3:o:supermicro:h13sae-mf_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:h13sae-mf:-:*:*:*:*:*:*:*

Configuration 52 [-]

AND

cpe:2.3:o:supermicro:h13srd-f_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:h13srd-f:-:*:*:*:*:*:*:*

Configuration 53 [-]

AND

cpe:2.3:o:supermicro:h13ssf_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:h13ssf:-:*:*:*:*:*:*:*

Configuration 54 [-]

AND

cpe:2.3:o:supermicro:h13ssh_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:h13ssh:-:*:*:*:*:*:*:*

Configuration 55 [-]

AND

cpe:2.3:o:supermicro:h13ssl-n_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:h13ssl-n:-:*:*:*:*:*:*:*

Configuration 56 [-]

AND

cpe:2.3:o:supermicro:h13ssl-nt_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:h13ssl-nt:-:*:*:*:*:*:*:*

Configuration 57 [-]

AND

cpe:2.3:o:supermicro:h13sst-g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:h13sst-g:-:*:*:*:*:*:*:*

Configuration 58 [-]

AND

cpe:2.3:o:supermicro:h13sst-gc_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:h13sst-gc:-:*:*:*:*:*:*:*

Configuration 59 [-]

AND

cpe:2.3:o:supermicro:h13ssw_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:h13ssw:-:*:*:*:*:*:*:*

Configuration 60 [-]

AND

cpe:2.3:o:supermicro:x12dai-n6_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12dai-n6:-:*:*:*:*:*:*:*

Configuration 61 [-]

AND

cpe:2.3:o:supermicro:x12ddw-a6_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12ddw-a6:-:*:*:*:*:*:*:*

Configuration 62 [-]

AND

cpe:2.3:o:supermicro:x12dgo-6_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12dgo-6:-:*:*:*:*:*:*:*

Configuration 63 [-]

AND

cpe:2.3:o:supermicro:x12dgq-r_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12dgq-r:-:*:*:*:*:*:*:*

Configuration 64 [-]

AND

cpe:2.3:o:supermicro:x12dgu_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12dgu:-:*:*:*:*:*:*:*

Configuration 65 [-]

AND

cpe:2.3:o:supermicro:x12dhm-6_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12dhm-6:-:*:*:*:*:*:*:*

Configuration 66 [-]

AND

cpe:2.3:o:supermicro:x12dpd-a6m25_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12dpd-a6m25:-:*:*:*:*:*:*:*

Configuration 67 [-]

AND

cpe:2.3:o:supermicro:x12dpfr-an6_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12dpfr-an6:-:*:*:*:*:*:*:*

Configuration 68 [-]

AND

cpe:2.3:o:supermicro:x12dpg-ar_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12dpg-ar:-:*:*:*:*:*:*:*

Configuration 69 [-]

AND

cpe:2.3:o:supermicro:x12dpg-oa6_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12dpg-oa6:-:*:*:*:*:*:*:*

Configuration 70 [-]

AND

cpe:2.3:o:supermicro:x12dpg-oa6-gd2_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12dpg-oa6-gd2:-:*:*:*:*:*:*:*

Configuration 71 [-]

AND

cpe:2.3:o:supermicro:x12dpg-qbt6_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12dpg-qbt6:-:*:*:*:*:*:*:*

Configuration 72 [-]

AND

cpe:2.3:o:supermicro:x12dpg-qr_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12dpg-qr:-:*:*:*:*:*:*:*

Configuration 73 [-]

AND

cpe:2.3:o:supermicro:x12dpg-qt6_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12dpg-qt6:-:*:*:*:*:*:*:*

Configuration 74 [-]

AND

cpe:2.3:o:supermicro:x12dpg-u6_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12dpg-u6:-:*:*:*:*:*:*:*

Configuration 75 [-]

AND

cpe:2.3:o:supermicro:x12dpi-n6_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12dpi-n6:-:*:*:*:*:*:*:*

Configuration 76 [-]

AND

cpe:2.3:o:supermicro:x12dpi-nt6_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12dpi-nt6:-:*:*:*:*:*:*:*

Configuration 77 [-]

AND

cpe:2.3:o:supermicro:x12dpl-i6_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12dpl-i6:-:*:*:*:*:*:*:*

Configuration 78 [-]

AND

cpe:2.3:o:supermicro:x12dpl-nt6_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12dpl-nt6:-:*:*:*:*:*:*:*

Configuration 79 [-]

AND

cpe:2.3:o:supermicro:x12dpt-b6_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12dpt-b6:-:*:*:*:*:*:*:*

Configuration 80 [-]

AND

cpe:2.3:o:supermicro:x12dpt-pt46_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12dpt-pt46:-:*:*:*:*:*:*:*

Configuration 81 [-]

AND

cpe:2.3:o:supermicro:x12dpt-pt6_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12dpt-pt6:-:*:*:*:*:*:*:*

Configuration 82 [-]

AND

cpe:2.3:o:supermicro:x12dpu-6_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12dpu-6:-:*:*:*:*:*:*:*

Configuration 83 [-]

AND

cpe:2.3:o:supermicro:x12dsc-6_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12dsc-6:-:*:*:*:*:*:*:*

Configuration 84 [-]

AND

cpe:2.3:o:supermicro:x12qch\+_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12qch\+:-:*:*:*:*:*:*:*

Configuration 85 [-]

AND

cpe:2.3:o:supermicro:x12sae_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12sae:-:*:*:*:*:*:*:*

Configuration 86 [-]

AND

cpe:2.3:o:supermicro:x12sae-5_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12sae-5:-:*:*:*:*:*:*:*

Configuration 87 [-]

AND

cpe:2.3:o:supermicro:x12sca-5f_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12sca-5f:-:*:*:*:*:*:*:*

Configuration 88 [-]

AND

cpe:2.3:o:supermicro:x12sca-f_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12sca-f:-:*:*:*:*:*:*:*

Configuration 89 [-]

AND

cpe:2.3:o:supermicro:x12scq_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12scq:-:*:*:*:*:*:*:*

Configuration 90 [-]

AND

cpe:2.3:o:supermicro:x12scv-lvds_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12scv-lvds:-:*:*:*:*:*:*:*

Configuration 91 [-]

AND

cpe:2.3:o:supermicro:x12scv-w_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12scv-w:-:*:*:*:*:*:*:*

Configuration 92 [-]

AND

cpe:2.3:o:supermicro:x12scz-f_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12scz-f:-:*:*:*:*:*:*:*

Configuration 93 [-]

AND

cpe:2.3:o:supermicro:x12scz-qf_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12scz-qf:-:*:*:*:*:*:*:*

Configuration 94 [-]

AND

cpe:2.3:o:supermicro:x12scz-tln4f_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12scz-tln4f:-:*:*:*:*:*:*:*

Configuration 95 [-]

AND

cpe:2.3:o:supermicro:x12sdv-10c-sp6f_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12sdv-10c-sp6f:-:*:*:*:*:*:*:*

Configuration 96 [-]

AND

cpe:2.3:o:supermicro:x12sdv-10c-spt4f_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12sdv-10c-spt4f:-:*:*:*:*:*:*:*

Configuration 97 [-]

AND

cpe:2.3:o:supermicro:x12sdv-14c-spt8f_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12sdv-14c-spt8f:-:*:*:*:*:*:*:*

Configuration 98 [-]

AND

cpe:2.3:o:supermicro:x12sdv-16c-spt8f_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12sdv-16c-spt8f:-:*:*:*:*:*:*:*

Configuration 99 [-]

AND

cpe:2.3:o:supermicro:x12sdv-20c-spt8f_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12sdv-20c-spt8f:-:*:*:*:*:*:*:*

Configuration 100 [-]

AND

cpe:2.3:o:supermicro:x12sdv-4c-sp6f_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12sdv-4c-sp6f:-:*:*:*:*:*:*:*

Configuration 101 [-]

AND

cpe:2.3:o:supermicro:x12sdv-4c-spt4f_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12sdv-4c-spt4f:-:*:*:*:*:*:*:*

Configuration 102 [-]

AND

cpe:2.3:o:supermicro:x12sdv-4c-spt8f_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12sdv-4c-spt8f:-:*:*:*:*:*:*:*

Configuration 103 [-]

AND

cpe:2.3:o:supermicro:x12sdv-8c-sp6f_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12sdv-8c-sp6f:-:*:*:*:*:*:*:*

Configuration 104 [-]

AND

cpe:2.3:o:supermicro:x12sdv-8c-spt4f_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12sdv-8c-spt4f:-:*:*:*:*:*:*:*

Configuration 105 [-]

AND

cpe:2.3:o:supermicro:x12sdv-8c-spt8f_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12sdv-8c-spt8f:-:*:*:*:*:*:*:*

Configuration 106 [-]

AND

cpe:2.3:o:supermicro:x12sdv-8ce-sp4f_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12sdv-8ce-sp4f:-:*:*:*:*:*:*:*

Configuration 107 [-]

AND

cpe:2.3:o:supermicro:x12spa-tf_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12spa-tf:-:*:*:*:*:*:*:*

Configuration 108 [-]

AND

cpe:2.3:o:supermicro:x12sped-f_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12sped-f:-:*:*:*:*:*:*:*

Configuration 109 [-]

AND

cpe:2.3:o:supermicro:x12spg-nf_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12spg-nf:-:*:*:*:*:*:*:*

Configuration 110 [-]

AND

cpe:2.3:o:supermicro:x12spi-tf_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12spi-tf:-:*:*:*:*:*:*:*

Configuration 111 [-]

AND

cpe:2.3:o:supermicro:x12spl-f_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12spl-f:-:*:*:*:*:*:*:*

Configuration 112 [-]

AND

cpe:2.3:o:supermicro:x12spl-ln4f_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12spl-ln4f:-:*:*:*:*:*:*:*

Configuration 113 [-]

AND

cpe:2.3:o:supermicro:x12spm-ln4f_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12spm-ln4f:-:*:*:*:*:*:*:*

Configuration 114 [-]

AND

cpe:2.3:o:supermicro:x12spm-ln6tf_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12spm-ln6tf:-:*:*:*:*:*:*:*

Configuration 115 [-]

AND

cpe:2.3:o:supermicro:x12spm-tf_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12spm-tf:-:*:*:*:*:*:*:*

Configuration 116 [-]

AND

cpe:2.3:o:supermicro:x12spo-f_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12spo-f:-:*:*:*:*:*:*:*

Configuration 117 [-]

AND

cpe:2.3:o:supermicro:x12spo-ntf_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12spo-ntf:-:*:*:*:*:*:*:*

Configuration 118 [-]

AND

cpe:2.3:o:supermicro:x12spt-g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12spt-g:-:*:*:*:*:*:*:*

Configuration 119 [-]

AND

cpe:2.3:o:supermicro:x12spt-gc_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12spt-gc:-:*:*:*:*:*:*:*

Configuration 120 [-]

AND

cpe:2.3:o:supermicro:x12spt-pt_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12spt-pt:-:*:*:*:*:*:*:*

Configuration 121 [-]

AND

cpe:2.3:o:supermicro:x12spw-f_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12spw-f:-:*:*:*:*:*:*:*

Configuration 122 [-]

AND

cpe:2.3:o:supermicro:x12spw-tf_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12spw-tf:-:*:*:*:*:*:*:*

Configuration 123 [-]

AND

cpe:2.3:o:supermicro:x12spz-ln4f_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12spz-ln4f:-:*:*:*:*:*:*:*

Configuration 124 [-]

AND

cpe:2.3:o:supermicro:x12spz-spln6f_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12spz-spln6f:-:*:*:*:*:*:*:*

Configuration 125 [-]

AND

cpe:2.3:o:supermicro:x12std-f_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12std-f:-:*:*:*:*:*:*:*

Configuration 126 [-]

AND

cpe:2.3:o:supermicro:x12ste-f_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12ste-f:-:*:*:*:*:*:*:*

Configuration 127 [-]

AND

cpe:2.3:o:supermicro:x12sth-f_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12sth-f:-:*:*:*:*:*:*:*

Configuration 128 [-]

AND

cpe:2.3:o:supermicro:x12sth-ln4f_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12sth-ln4f:-:*:*:*:*:*:*:*

Configuration 129 [-]

AND

cpe:2.3:o:supermicro:x12sth-sys_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12sth-sys:-:*:*:*:*:*:*:*

Configuration 130 [-]

AND

cpe:2.3:o:supermicro:x12stl-f_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12stl-f:-:*:*:*:*:*:*:*

Configuration 131 [-]

AND

cpe:2.3:o:supermicro:x12stl-if_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12stl-if:-:*:*:*:*:*:*:*

Configuration 132 [-]

AND

cpe:2.3:o:supermicro:x12stn-c_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12stn-c:-:*:*:*:*:*:*:*

Configuration 133 [-]

AND

cpe:2.3:o:supermicro:x12stn-c-wohs_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12stn-c-wohs:-:*:*:*:*:*:*:*

Configuration 134 [-]

AND

cpe:2.3:o:supermicro:x12stn-e_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12stn-e:-:*:*:*:*:*:*:*

Configuration 135 [-]

AND

cpe:2.3:o:supermicro:x12stn-e-wohs_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12stn-e-wohs:-:*:*:*:*:*:*:*

Configuration 136 [-]

AND

cpe:2.3:o:supermicro:x12stn-h_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12stn-h:-:*:*:*:*:*:*:*

Configuration 137 [-]

AND

cpe:2.3:o:supermicro:x12stn-h-wohs_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12stn-h-wohs:-:*:*:*:*:*:*:*

Configuration 138 [-]

AND

cpe:2.3:o:supermicro:x12stn-l_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12stn-l:-:*:*:*:*:*:*:*

Configuration 139 [-]

AND

cpe:2.3:o:supermicro:x12stn-l-wohs_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12stn-l-wohs:-:*:*:*:*:*:*:*

Configuration 140 [-]

AND

cpe:2.3:o:supermicro:x12stw-f_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12stw-f:-:*:*:*:*:*:*:*

Configuration 141 [-]

AND

cpe:2.3:o:supermicro:x12stw-tf_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:x12stw-tf:-:*:*:*:*:*:*:*

Configuration 142 [-]

AND

cpe:2.3:o:supermicro:h12ssw-ntr_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:h12ssw-ntr:-:*:*:*:*:*:*:*

Configuration 143 [-]

AND

cpe:2.3:o:supermicro:h12ssw-ntl_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:h12ssw-ntl:-:*:*:*:*:*:*:*

Configuration 144 [-]

AND

cpe:2.3:o:supermicro:h12ssw-nt_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:h12ssw-nt:-:*:*:*:*:*:*:*

Configuration 145 [-]

AND

cpe:2.3:o:supermicro:h12ssw-inr_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:h12ssw-inr:-:*:*:*:*:*:*:*

Configuration 146 [-]

AND

cpe:2.3:o:supermicro:h12ssw-inl_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:h12ssw-inl:-:*:*:*:*:*:*:*

Configuration 147 [-]

AND

cpe:2.3:o:supermicro:h12ssw-in_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:h12ssw-in:-:*:*:*:*:*:*:*

Configuration 148 [-]

AND

cpe:2.3:o:supermicro:h12ssw-an6_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:h12ssw-an6:-:*:*:*:*:*:*:*

Configuration 149 [-]

AND

cpe:2.3:o:supermicro:h12sst-ps_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:h12sst-ps:-:*:*:*:*:*:*:*

Configuration 150 [-]

AND

cpe:2.3:o:supermicro:h12ssl-nt_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:h12ssl-nt:-:*:*:*:*:*:*:*

Configuration 151 [-]

AND

cpe:2.3:o:supermicro:h12ssl-i_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:h12ssl-i:-:*:*:*:*:*:*:*

Configuration 152 [-]

AND

cpe:2.3:o:supermicro:h12ssl-ct_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:h12ssl-ct:-:*:*:*:*:*:*:*

Configuration 153 [-]

AND

cpe:2.3:o:supermicro:h12ssl-c_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:h12ssl-c:-:*:*:*:*:*:*:*

Configuration 154 [-]

AND

cpe:2.3:o:supermicro:h12ssg-anp6_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:h12ssg-anp6:-:*:*:*:*:*:*:*

Configuration 155 [-]

AND

cpe:2.3:o:supermicro:h12ssg-an6_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:h12ssg-an6:-:*:*:*:*:*:*:*

Configuration 156 [-]

AND

cpe:2.3:o:supermicro:h12ssfr-an6_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:h12ssfr-an6:-:*:*:*:*:*:*:*

Configuration 157 [-]

AND

cpe:2.3:o:supermicro:h12ssff-an6_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:h12ssff-an6:-:*:*:*:*:*:*:*

Configuration 158 [-]

AND

cpe:2.3:o:supermicro:h12dsu-inr_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:h12dsu-inr:-:*:*:*:*:*:*:*

Configuration 159 [-]

AND

cpe:2.3:o:supermicro:h12dsu-in_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:h12dsu-in:-:*:*:*:*:*:*:*

Configuration 160 [-]

AND

cpe:2.3:o:supermicro:h12dst-b_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:h12dst-b:-:*:*:*:*:*:*:*

Configuration 161 [-]

AND

cpe:2.3:o:supermicro:h12dsi-nt6_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:h12dsi-nt6:-:*:*:*:*:*:*:*

Configuration 162 [-]

AND

cpe:2.3:o:supermicro:h12dsi-n6_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:h12dsi-n6:-:*:*:*:*:*:*:*

Configuration 163 [-]

AND

cpe:2.3:o:supermicro:h12dsg-q-cpu6_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:h12dsg-q-cpu6:-:*:*:*:*:*:*:*

Configuration 164 [-]

AND

cpe:2.3:o:supermicro:h12dsg-o-cpu_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:h12dsg-o-cpu:-:*:*:*:*:*:*:*

Configuration 165 [-]

AND

cpe:2.3:o:supermicro:h12dgq-nt6_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:h12dgq-nt6:-:*:*:*:*:*:*:*

Configuration 166 [-]

AND

cpe:2.3:o:supermicro:h12dgo-6_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:supermicro:h12dgo-6:-:*:*:*:*:*:*:*

No data.

Advisories

Source	ID	Title
EUVD	EUVD-2023-39854	A shell-injection vulnerability in email notifications on Supermicro motherboards (such as H12DST-B before 03.10.35) allows remote attackers to inject execute arbitrary commands as root on the BMC.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
https://blog.freax13.de/cve/cve-2023-35861
https://www.supermicro.com/en/products/motherboards
https://www.supermicro.com/en/support/security_SMTP_Jun_2023

History

Tue, 22 Oct 2024 18:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'yes', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2023-07-31T00:00:00

Updated: 2024-10-22T18:08:38.401Z

Reserved: 2023-06-19T00:00:00

Link: CVE-2023-35861

Vulnrichment

Updated: 2024-08-02T16:30:45.365Z

NVD

Status : Modified

Published: 2023-07-31T13:15:09.833

Modified: 2024-11-21T08:08:51.000

Link: CVE-2023-35861

Redhat

No data.

OpenCVE Enrichment

No data.

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Exploitation poc

Automatable yes

Technical Impact total

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object

JSON object