Skip to main content

M11Sdv 4C Ln4F Firmware CVE-2023-33413

HIGH
Use of Hard-coded Credentials (CWE-798)
2023-12-07 cve@mitre.org
Authentication Bypass M11Sdv 4C Ln4F Firmware M11Sdv 4Ct Ln4F Firmware M11Sdv 8C Ln4F Firmware M11Sdv 8Ct Ln4F Firmware C9X299 Pg Firmware C9X299 Pg300 Firmware C9X299 Pg300F Firmware C9X299 Pgf Firmware C9X299 Pgf L Firmware C9X299 Rpgf Firmware C9X299 Rpgf L Firmware B13Dee Firmware B13Det Firmware B13See Cpu 25G Firmware B13Seg Firmware H13Dsg O Cpu Firmware H13Dsg O Cpu D Firmware H13Dsg Om Firmware H13Dsh Firmware H13Sae Mf Firmware H13Sra F Firmware H13Sra Tf Firmware H13Srd F Firmware H13Ssf Firmware H13Ssh Firmware H13Ssl N Firmware H13Ssl Nt Firmware H13Sst G Firmware H13Sst Gc Firmware H13Ssw Firmware H13Svw N Firmware H13Svw Nt Firmware X13Dai T Firmware X13Ddw A Firmware X13Deg Oa Firmware X13Deg Oad Firmware X13Deg Pvc Firmware X13Deg Qt Firmware X13Deh Firmware X13Dei Firmware X13Dei T Firmware X13Dem Firmware X13Det B Firmware X13Dgu Firmware X13Dsf A Firmware X13Qeh Firmware X13Sae Firmware X13Sae F Firmware X13San C Firmware X13San C Wohs Firmware X13San E Firmware X13San E Wohs Firmware X13San H Firmware X13San H Wohs Firmware X13San L Firmware X13San L Wohs Firmware X13Saq Firmware X13Sav Lvds Firmware X13Sav Ps Firmware X13Saz F Firmware X13Saz Q Firmware X13Sedw F Firmware X13Seed F Firmware X13Seed Sf Firmware X13Sefr A Firmware X13Sei F Firmware X13Sei Tf Firmware X13Sem F Firmware X13Sem Tf Firmware X13Set G Firmware X13Set Gc Firmware X13Sew F Firmware X13Sew Tf Firmware X13Sra Tf Firmware X13Srn E Firmware X13Srn E Wohs Firmware X13Srn H Firmware X13Srn H Wohs Firmware X13Swa Tf Firmware B12Dpe 6 Firmware B12Dpt 6 Firmware B12Spe Cpu 25G Firmware H12Dgo 6 Firmware H12Dgq Nt6 Firmware H12Dsg O Cpu Firmware H12Dsg Q Cpu6 Firmware H12Dsi N6 Firmware H12Dsi Nt6 Firmware H12Dst B Firmware H12Dsu In Firmware H12Dsu Inr Firmware H12Ssff An6 Firmware H12Ssfr An6 Firmware H12Ssg An6 Firmware H12Ssg Anp6 Firmware H12Ssl C Firmware H12Ssl Ct Firmware H12Ssl I Firmware H12Ssl Nt Firmware H12Sst Ps Firmware H12Ssw An6 Firmware H12Ssw In Firmware H12Ssw Inl Firmware H12Ssw Inr Firmware H12Ssw Nt Firmware H12Ssw Ntl Firmware H12Ssw Ntr Firmware X12Dai N6 Firmware X12Ddw A6 Firmware X12Dgo 6 Firmware X12Dgq R Firmware X12Dgu Firmware X12Dhm 6 Firmware X12Dpd A6M25 Firmware X12Dpfr An6 Firmware X12Dpg Ar Firmware X12Dpg Oa6 Firmware X12Dpg Oa6 Gd2 Firmware X12Dpg Qbt6 Firmware X12Dpg Qr Firmware X12Dpg Qt6 Firmware X12Dpg U6 Firmware X12Dpi N6 Firmware X12Dpi Nt6 Firmware X12Dpl I6 Firmware X12Dpl Nt6 Firmware X12Dpt B6 Firmware X12Dpt Pt46 Firmware X12Dpt Pt6 Firmware X12Dpu 6 Firmware X12Dsc 6 Firmware X12Qch Firmware X12Sae Firmware X12Sae 5 Firmware X12Sca 5F Firmware X12Sca F Firmware X12Scq Firmware X12Scv Lvds Firmware X12Scv W Firmware X12Scz F Firmware X12Scz Qf Firmware X12Scz Tln4F Firmware X12Sdv 10C Sp6F Firmware X12Sdv 10C Spt4F Firmware X12Sdv 14C Spt8F Firmware X12Sdv 16C Spt8F Firmware X12Sdv 20C Spt8F Firmware X12Sdv 4C Sp6F Firmware X12Sdv 4C Spt4F Firmware X12Sdv 4C Spt8F Firmware X12Sdv 8C Sp6F Firmware X12Sdv 8C Spt4F Firmware X12Sdv 8C Spt8F Firmware X12Sdv 8Ce Sp4F Firmware X12Spa Tf Firmware X12Sped F Firmware X12Spg Nf Firmware X12Spi Tf Firmware X12Spl F Firmware X12Spl Ln4F Firmware X12Spm Ln4F Firmware X12Spm Ln6Tf Firmware X12Spm Tf Firmware X12Spo F Firmware X12Spo Ntf Firmware X12Spt G Firmware X12Spt Gc Firmware X12Spt Pt Firmware X12Spw F Firmware X12Spw Tf Firmware X12Spz Ln4F Firmware X12Spz Spln6F Firmware X12Std F Firmware X12Ste F Firmware X12Sth F Firmware X12Sth Ln4F Firmware X12Sth Sys Firmware X12Stl F Firmware X12Stl If Firmware X12Stn C Firmware X12Stn C Wohs Firmware X12Stn E Firmware X12Stn E Wohs Firmware X12Stn H Firmware X12Stn H Wohs Firmware X12Stn L Firmware X12Stn L Wohs Firmware X12Stw F Firmware X12Stw Tf Firmware X11Dac Firmware X11Dai N Firmware X11Ddw L Firmware X11Ddw Nt Firmware X11Dgo T Firmware X11Dgq Firmware X11Dpd L Firmware X11Dpd M25 Firmware X11Dpff Sn Firmware X11Dpff Snr Firmware X11Dpfr S Firmware X11Dpfr Sn Firmware X11Dpg Hgx2 Firmware X11Dpg Ot Cpu Firmware X11Dpg Qt Firmware X11Dpg Sn Firmware X11Dph I Firmware X11Dph T Firmware X11Dph Tq Firmware X11Dpi N Firmware X11Dpi Nt Firmware X11Dpl I Firmware X11Dps Re Firmware X11Dpt B Firmware X11Dpt Bh Firmware X11Dpt Br Firmware X11Dpt L Firmware X11Dpt Ps Firmware X11Dpu Firmware X11Dpu R Firmware X11Dpu V Firmware X11Dpu Xll Firmware X11Dpu Z Firmware X11Dpu Ze Firmware X11Dpx T Firmware X11Dsc Firmware X11Dsf E Firmware X11Dsn Ts Firmware X11Dsn Tsq Firmware X11Opi Cpu Firmware X11Opi Cpu Cl Firmware X11Qph Firmware X11Qpl Firmware X11Saa Firmware X11Sae Firmware X11Sae F Firmware X11Sae M Firmware X11San Firmware X11San Wohs Firmware X11Sat Firmware X11Sat F Firmware X11Sba F Firmware X11Sba Ln4F Firmware X11Sca Firmware X11Sca F Firmware X11Sca W Firmware X11Scd F Firmware X11Sce F Firmware X11Sch F Firmware X11Sch Ln4F Firmware X11Scl F Firmware X11Scl If Firmware X11Scl Ln4F Firmware X11Scm F Firmware X11Scm Ln8F Firmware X11Scq Firmware X11Scq L Firmware X11Scv L Firmware X11Scv Q Firmware X11Scw F Firmware X11Scz F Firmware X11Scz Q Firmware X11Sdc 16C Firmware X11Sdc 4C Firmware X11Sdc 8C Firmware X11Sdd 18C F Firmware X11Sdd 8C F Firmware X11Sds 12C Firmware X11Sds 14C Firmware X11Sds 16C Firmware X11Sds 8C Firmware X11Sdv 12C Tln2F Firmware X11Sdv 12C Tp8F Firmware X11Sdv 16C Tln2F Firmware X11Sdv 16C Tp8F Firmware X11Sdv 4C Tln2F Firmware X11Sdv 4C Tp8F Firmware X11Sdv 4C Tp8F 01 Firmware X11Sdv 8C Tln2F Firmware X11Sdv 8C Tp8F Firmware X11Sdw 12C Tp13F Firmware X11Sdw 14C Tp13F Firmware X11Sdw 14Cn Tp13F Firmware X11Sdw 14Cnt Tp13F Firmware X11Sdw 16C Tp13F Firmware X11Sdw 4C Tp13F Firmware X11Sdw 8C Tp13F Firmware X11Spa T Firmware X11Spa Tf Firmware X11Spd F Firmware X11Spg Tf Firmware X11Sph Nctf Firmware X11Sph Nctpf Firmware X11Spi Tf Firmware X11Spl F Firmware X11Spm F Firmware X11Spm Tf Firmware X11Spm Tpf Firmware X11Spw Ctf Firmware X11Spw Tf Firmware X11Sra Firmware X11Sra F Firmware X11Sra Rf Firmware X11Sri If Firmware X11Srl F Firmware X11Srm F Firmware X11Srm Vf Firmware X11Ssa F Firmware X11Ssd F Firmware X11Sse F Firmware X11Ssh Ctf Firmware X11Ssh F Firmware X11Ssh Gf 1585 Firmware X11Ssh Gf 1585L Firmware X11Ssh Gtf 1585 Firmware X11Ssh Gtf 1585L Firmware X11Ssh Ln4F Firmware X11Ssh Tf Firmware X11Ssi Ln4F Firmware X11Ssl Firmware X11Ssl Cf Firmware X11Ssl F Firmware X11Ssl Nf Firmware X11Ssm Firmware X11Ssm F Firmware X11Ssn E Firmware X11Ssn E 001 Firmware X11Ssn E Vdc Firmware X11Ssn E Wohs Firmware X11Ssn H Firmware X11Ssn H 001 Firmware X11Ssn H Vdc Firmware X11Ssn H Wohs Firmware X11Ssn L Firmware X11Ssn L 001 Firmware X11Ssn L Vdc Firmware X11Ssn L Wohs Firmware X11Ssq Firmware X11Ssq L Firmware X11Ssv Lvds Firmware X11Ssv M4 Firmware X11Ssv M4F Firmware X11Ssv Q Firmware X11Ssw 4Tf Firmware X11Ssw F Firmware X11Ssw Tf Firmware X11Ssz F Firmware X11Ssz Qf Firmware X11Ssz Tln4F Firmware X11Swn C Firmware X11Swn C Wohs Firmware X11Swn E Firmware X11Swn E Wohs Firmware X11Swn H Firmware X11Swn H Wohs Firmware X11Swn L Firmware X11Swn L Wohs Firmware
8.8
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
8.8 HIGH
AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

1
CVE Published
Dec 07, 2023 - 18:15 nvd
HIGH 8.8

DescriptionNVD

The configuration functionality in the Intelligent Platform Management Interface (IPMI) baseboard management controller (BMC) implementation on Supermicro X11 and M11 based devices, with firmware versions through 3.17.02, allows remote authenticated users to execute arbitrary commands.

AnalysisAI

The configuration functionality in the Intelligent Platform Management Interface (IPMI) baseboard management controller (BMC) implementation on Supermicro X11 and M11 based devices, with firmware. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Technical ContextAI

This vulnerability is classified as Use of Hard-coded Credentials (CWE-798), which allows attackers to gain access using credentials embedded in source code. The configuration functionality in the Intelligent Platform Management Interface (IPMI) baseboard management controller (BMC) implementation on Supermicro X11 and M11 based devices, with firmware versions through 3.17.02, allows remote authenticated users to execute arbitrary commands. Affected products include: Supermicro M11Sdv-4C-Ln4F Firmware, Supermicro M11Sdv-4Ct-Ln4F Firmware, Supermicro M11Sdv-8C-Ln4F Firmware, Supermicro M11Sdv-8Ct-Ln4F Firmware, Supermicro M11Sdv-8C\+-Ln4F Firmware. Version information: through 3.17.02.

RemediationAI

No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Remove hard-coded credentials, use environment variables or secrets management, rotate exposed credentials immediately.

Share

CVE-2023-33413 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy