Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
fld->used_bytes without sanity check causes stack overflow
Vulnerability Description
A security issue in the firmware image verification implementation at Supermicro MBD-X12DPG-OA6 . An attacker with administrator privileges can upload a specially crafted image, which can cause a stack overflow due to the unchecked fat->fsd.max_fld.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
栈缓冲区溢出
Vulnerability Title
SuperMicro MBD-X12DPG-OA6 安全漏洞
Vulnerability Description
SuperMicro MBD-X12DPG-OA6是美国超微(SuperMicro)公司的一款处理器。 Supermicro MBD-X12DPG-OA6存在安全漏洞。攻击者利用该漏洞可以上传特制映像导致堆栈溢出。
CVSS Information
N/A
Vulnerability Type
N/A