Supermicro X11sse-f Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Supermicro X11sse-f Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (14)
CVE-2019-16650 — CVSS 10.0 (critical): On Supermicro X10 and X11 products, a client's access privileges may be transferred to a different client that later has the same socket…
CVE-2019-16649 — CVSS 10.0 (critical): On Supermicro H11, H12, M11, X9, X10, and X11 products, a combination of encryption and authentication problems in the virtual media…
CVE-2023-33412 — CVSS 8.8 (high): The web interface in the Intelligent Platform Management Interface (IPMI) baseboard management controller (BMC) implementation on…
CVE-2023-33413 — CVSS 8.8 (high): The configuration functionality in the Intelligent Platform Management Interface (IPMI) baseboard management controller (BMC)…
CVE-2023-40290 — CVSS 8.3 (high): An issue was discovered on Supermicro X11SSM-F, X11SAE-F, and X11SSE-F 1.66 devices. An attacker could exploit an XSS issue that affects…
CVE-2023-40284 — CVSS 8.3 (high): An issue was discovered on Supermicro X11SSM-F, X11SAE-F, and X11SSE-F 1.66 devices. An attacker could exploit an XSS issue.
CVE-2023-40286 — CVSS 8.3 (high): An issue was discovered on Supermicro X11SSM-F, X11SAE-F, and X11SSE-F 1.66 devices. An attacker could exploit an XSS issue.
CVE-2023-40287 — CVSS 8.3 (high): An issue was discovered on Supermicro X11SSM-F, X11SAE-F, and X11SSE-F 1.66 devices. An attacker could exploit an XSS issue.
CVE-2023-40288 — CVSS 8.3 (high): An issue was discovered on Supermicro X11SSM-F, X11SAE-F, and X11SSE-F 1.66 devices. An attacker could exploit an XSS issue.
CVE-2023-34853 — CVSS 7.8 (high): Buffer Overflow vulnerability in Supermicro motherboard X12DPG-QR 1.4b allows local attackers to hijack control flow via manipulation of…
CVE-2023-33411 — CVSS 7.5 (high): A web server in the Intelligent Platform Management Interface (IPMI) baseboard management controller (BMC) implementation on Supermicro X11…
CVE-2023-40289 — CVSS 7.2 (high): A command injection issue was discovered on Supermicro X11SSM-F, X11SAE-F, and X11SSE-F 1.66 devices. An attacker can exploit this to…
CVE-2023-40285 — CVSS 6.5 (medium): An issue was discovered on Supermicro X11SSM-F, X11SAE-F, and X11SSE-F 1.66 devices. An attacker could exploit an XSS issue.
CVE-2022-43309 — CVSS 5.5 (medium): Supermicro X11SSL-CF HW Rev 1.01, BMC firmware v1.63 was discovered to contain insecure permissions.