← back
CVE-2023-35861

CVE-2023-35861

EPSS 1.5%
A shell-injection vulnerability in email notifications on Supermicro motherboards (such as H12DST-B before 03.10.35) allows remote attackers to inject execute arbitrary commands as root on the BMC.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://blog.freax13.de/cve/cve-2023-35861https://www.supermicro.com/en/products/motherboardshttps://www.supermicro.com/en/support/security_SMTP_Jun_2023