A command injection issue was discovered on Supermicro X11SSM-F, X11SAE-F, and X11SSE-F 1.66 devices. An attacker can exploit this to elevate privileges from a user with BMC administrative privileges.
Metrics
Affected Vendors & Products
References
History
Tue, 06 Aug 2024 17:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-269 | |
Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2024-03-27T00:00:00
Updated: 2024-08-06T14:58:54.338Z
Reserved: 2023-08-14T00:00:00
Link: CVE-2023-40289
Vulnrichment
Updated: 2024-08-02T18:31:52.795Z
NVD
Status : Awaiting Analysis
Published: 2024-03-27T04:15:10.220
Modified: 2024-08-06T15:35:03.140
Link: CVE-2023-40289
Redhat
No data.