CVE-2025-8727 | THREATINT

Description

There is a vulnerability in the Supermicro BMC web function at Supermicro MBD-X13SEDW-F. After logging into the BMC Web server, an attacker can use a specially crafted payload to trigger the Stack buffer overflow vulnerability.

PUBLISHED Reserved 2025-08-08 | Published 2025-11-18 | Updated 2025-11-18 | Assigner Supermicro

HIGH: 7.2CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Problem types

CWE-121: Stack-based Buffer Overflow

Product status

Default status

unaffected

01.03.48

affected

Credits

Coreweave Red Team and Hoang Bui from Coreweave finder

References

www.supermicro.com/zh_tw/support/security_BMC_IPMI_Nov_2025

cve.org (CVE-2025-8727)

nvd.nist.gov (CVE-2025-8727)

Download JSON