at Supermicro MBD-X12DPG-OA6
. An attacker can modify the firmware to bypass BMC inspection and bypass the signature verification process
Analysis and contextual insights are available on OpenCVE Cloud.
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
| Source | ID | Title |
|---|---|---|
EUVD |
EUVD-2024-33597 | There is a vulnerability in the BMC firmware image authentication design at Supermicro MBD-X12DPG-OA6 . An attacker can modify the firmware to bypass BMC inspection and bypass the signature verification process |
Tue, 15 Jul 2025 13:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
epss
|
epss
|
Tue, 04 Feb 2025 15:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Tue, 04 Feb 2025 08:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | There is a vulnerability in the BMC firmware image authentication design at Supermicro MBD-X12DPG-OA6 . An attacker can modify the firmware to bypass BMC inspection and bypass the signature verification process | |
| Title | SMC BMC Firmware Image Authentication Design Issue | |
| Weaknesses | CWE-345 CWE-347 |
|
| References |
| |
| Metrics |
cvssV3_1
|
Subscriptions
No data.
Status: PUBLISHED
Assigner: Supermicro
Published:
Updated: 2025-02-04T14:38:14.400Z
Reserved: 2024-10-22T03:14:14.274Z
Link: CVE-2024-10237
Updated: 2025-02-04T14:38:10.441Z
Status : Deferred
Published: 2025-02-04T08:15:27.920
Modified: 2026-06-17T06:55:13.367
Link: CVE-2024-10237
No data.
OpenCVE Enrichment
No data.
EUVD