CVE-2025-7704 - Vulnerability Details - OpenCVE

Supermicro BMC Insyde SMASH shell program has a stacked-based overflow vulnerability

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact Low

Availability Impact Low

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00039.

Exploitation none

Automatable no

Technical Impact partial

Vendors	Products
Supermicro	Bmc

No data.

No data.

OpenCVE Enrichment is a feature of OpenCVE that uses AI to automatically link vendors and products to CVEs. Learn more on GitHub.

Vendors	Products
Supermicro	Bmc

Advisories

No advisories yet.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
https://www.supermicro.com/en/support/security_BMC_IPMI_Oct_2025

History

Thu, 13 Nov 2025 19:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Thu, 13 Nov 2025 16:00:00 +0000

Type	Values Removed	Values Added
First Time appeared		Supermicro Supermicro bmc
Vendors & Products		Supermicro Supermicro bmc

Thu, 13 Nov 2025 09:30:00 +0000

Type	Values Removed	Values Added
Description		Supermicro BMC Insyde SMASH shell program has a stacked-based overflow vulnerability
Title		Supermicro BMC SMASH services has a Stack-based buffer overflow vulnerability
Weaknesses		CWE-121
References		https://www.supermicro.com/en/support/security_BMC_IPMI_Oct_2025
Metrics		cvssV3_1 `{'score': 5.4, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L'}`

MITRE

Status: PUBLISHED

Assigner: Supermicro

Published: 2025-11-13T09:12:11.508Z

Updated: 2025-11-13T18:12:05.194Z

Reserved: 2025-07-16T10:01:00.898Z

Link: CVE-2025-7704

Vulnrichment

Updated: 2025-11-13T18:12:00.991Z

NVD

Status : Received

Published: 2025-11-13T10:15:54.823

Modified: 2025-11-13T10:15:54.823

Link: CVE-2025-7704

Redhat

No data.

OpenCVE Enrichment

Updated: 2025-11-13T15:50:08Z

{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-7704", "assignerOrgId": "def9a96e-e099-41a9-bfac-30fd4f82c411", "state": "PUBLISHED", "assignerShortName": "Supermicro", "dateReserved": "2025-07-16T10:01:00.898Z", "datePublished": "2025-11-13T09:12:11.508Z", "dateUpdated": "2025-11-13T18:12:05.194Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "platforms": ["BMC"], "product": "SYS-111C-NR", "vendor": "SMCI", "versions": [{"status": "affected", "version": "1.04.11", "versionType": "BMC"}]}], "credits": [{"lang": "en", "type": "finder", "value": "Nils Heuer, Benedikt Heck, Benedict Schl\u00fcter and Shweta Shinde of ETH Zurich"}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "<span style=\"background-color: rgb(255, 255, 255);\">Supermicro BMC Insyde SMASH shell program has a stacked-based overflow vulnerability</span>\n\n<br>"}], "value": "Supermicro BMC Insyde SMASH shell program has a stacked-based overflow vulnerability"}], "impacts": [{"capecId": "CAPEC-100", "descriptions": [{"lang": "en", "value": "CAPEC-100 Overflow Buffers"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 5.4, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-121", "description": "CWE-121: Stack-based Buffer Overflow", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "def9a96e-e099-41a9-bfac-30fd4f82c411", "shortName": "Supermicro", "dateUpdated": "2025-11-13T09:15:53.620Z"}, "references": [{"url": "https://www.supermicro.com/en/support/security_BMC_IPMI_Oct_2025"}], "source": {"discovery": "UNKNOWN"}, "title": "Supermicro BMC SMASH services has a Stack-based buffer overflow vulnerability", "x_generator": {"engine": "Vulnogram 0.5.0"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2025-11-13T18:11:57.836549Z", "id": "CVE-2025-7704", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-11-13T18:12:05.194Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2025-7704", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2025-11-13T18:11:57.836549Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-11-13T18:12:00.991Z"}}], "cna": {"title": "Supermicro BMC SMASH services has a Stack-based buffer overflow vulnerability", "source": {"discovery": "UNKNOWN"}, "credits": [{"lang": "en", "type": "finder", "value": "Nils Heuer, Benedikt Heck, Benedict Schl\u00fcter and Shweta Shinde of ETH Zurich"}], "impacts": [{"capecId": "CAPEC-100", "descriptions": [{"lang": "en", "value": "CAPEC-100 Overflow Buffers"}]}], "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.4, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "LOW", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "SMCI", "product": "SYS-111C-NR", "versions": [{"status": "affected", "version": "1.04.11", "versionType": "BMC"}], "platforms": ["BMC"], "defaultStatus": "unaffected"}], "references": [{"url": "https://www.supermicro.com/en/support/security_BMC_IPMI_Oct_2025"}], "x_generator": {"engine": "Vulnogram 0.5.0"}, "descriptions": [{"lang": "en", "value": "Supermicro BMC Insyde SMASH shell program has a stacked-based overflow vulnerability", "supportingMedia": [{"type": "text/html", "value": "<span style=\"background-color: rgb(255, 255, 255);\">Supermicro BMC Insyde SMASH shell program has a stacked-based overflow vulnerability</span>\n\n<br>", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-121", "description": "CWE-121: Stack-based Buffer Overflow"}]}], "providerMetadata": {"orgId": "def9a96e-e099-41a9-bfac-30fd4f82c411", "shortName": "Supermicro", "dateUpdated": "2025-11-13T09:15:53.620Z"}}}, "cveMetadata": {"cveId": "CVE-2025-7704", "state": "PUBLISHED", "dateUpdated": "2025-11-13T18:12:05.194Z", "dateReserved": "2025-07-16T10:01:00.898Z", "assignerOrgId": "def9a96e-e099-41a9-bfac-30fd4f82c411", "datePublished": "2025-11-13T09:12:11.508Z", "assignerShortName": "Supermicro"}, "dataVersion": "5.2"}