CNNVD-202511-1633 Information

Nov 13, 2025 cve

CNNVD ID

CNNVD-202511-1633

CVE-2025-7704

CNNVD Published: 2025-11-13

Description (Chinese)

SuperMicro BMC是美国超微（SuperMicro）公司的一个用于服务器、机架顶部交换机或 RAID 设备等设备中的固件。 Supermicro BMC存在安全漏洞，该漏洞源于Insyde SMASH shell程序存在基于栈的缓冲区溢出。

Description (English)

SuperMicro BMC is a solid piece of equipment used by SuperMicro for servers, top exchange or RAID equipment. The Supermicro BMC had a security loophole, which stemmed from the spill of the Insyde SMASH shell program, which had a fence-based buffer zone.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

超微

Published

2025-11-13

Last Modified

2026-02-24

References

https://www.supermicro.com/en/support/security_BMC_IPMI_Oct_2025

Patch

https://www.supermicro.com/en/support/security_BMC_IPMI_Oct_2025

Share on: