Supermicro 漏洞,2025年10月
漏洞披露:
本公告旨在通报由外部研究人员报告的、Supermicro 漏洞。
致谢:
Supermicro 感谢苏黎世联邦理工学院研究人员在发现Supermicro 潜在漏洞方面所做的工作。该漏洞由苏黎世联邦理工学院的Nils Heuer、Benedikt Heck、Benedict Schlüter和Shweta Shinde发现。
摘要
在部分supermicro 和CMM中发现了一个安全问题。该问题可能影响Supermicro 固件。
| CVE ID | 严重性 | 问题类型 | 说明 |
|---|---|---|---|
| 中型 | BMC SMASH中的栈溢出 | 攻击者可利用环境变量将shell字符串注入程序,最终通过溢出攻击破坏程序执行流程。 Supermicro :5.4(攻击向量:无/攻击难度:低/物理条件:低/用户交互:无/系统漏洞:高/配置错误:无/信息泄露:低/分析:低) |
受影响的产品:
Supermicro (板载管理控制器)搭载于特定型号的主板和CMM(计算机管理模块)中。
CVE-2025-7704
| 主板 | 带有修复功能的 BMC FW |
|---|---|
| MBD-A2SD1-3750F | 1.77 |
| MBD-A2SD1-3955F | 1.77 |
| MBD-K1SPE-IN001 | 1.77 |
| MBD-K1SPE | 1.77 |
| MBD-K1SPE-T | 1.77 |
| MBD-K1SPI | 1.77 |
| MBD-K1SPI-T | 1.77 |
| MBD-X11SBA-F | 1.77 |
| MBD-X11SBA-LN4F | 1.77 |
| MBD-X11固态硬盘-F | 1.77 |
| MBD-X11SSE-F | 1.77 |
| MBD-X11DAC | 1.74.19 |
| MBD-X11DAI-N | 1.74.19 |
| MBD-X11DDW-L | 1.74.19 |
| MBD-X11DDW-NT | 1.74.19 |
| MBD-X11DPFR-S-LC019 | 1.74.19 |
| MBD-X11DPFR-S | 1.74.19 |
| MBD-X11DPFR-SN-LC019 | 1.74.19 |
| MBD-X11DPFR-SN | 1.74.19 |
| MBD-X11DPG-21-PCIe | 1.74.19 |
| MBD-X11DPG-O-PCIe | 1.74.19 |
| MBD-X11DPG-OT-CPU | 1.74.19 |
| MBD-X11DPG-QT | 1.74.19 |
| MBD-X11DPG-SN-LC019 | 1.74.19 |
| MBD-X11DPG-SN | 1.74.19 |
| MBD-X11DPH-I | 1.74.19 |
| MBD-X11DPH-T | 1.74.19 |
| MBD-X11DPH-TQ | 1.74.19 |
| MBD-X11DPI-N | 1.74.19 |
| MBD-X11DPI-NI | 1.74.19 |
| MBD-X11DPI-NT | 1.74.19 |
| MBD-X11DPI | 1.74.19 |
| MBD-X11DPI-T | 1.74.19 |
| MBD-X11DPT-B+ | 1.74.19 |
| MBD-X11DPT-BH | 1.74.19 |
| MBD-X11DPT-BV | 1.74.19 |
| MBD-X11DPT-LC019 | 1.74.19 |
| MBD-X11DPT-PS | 1.74.19 |
| MBD-X11DPU+ | 1.74.19 |
| MBD-X11DPU-LC019 | 1.74.19 |
| MBD-X11DPU-NEBS | 1.74.19 |
| MBD-X11DPU | 1.74.19 |
| MBD-X11DPU-V | 1.74.19 |
| MBD-X11DPU-X | 1.74.19 |
| MBD-X11DPU-XLL | 1.74.19 |
| MBD-X11DPU-Z+ | 1.74.19 |
| MBD-X11DPX-T | 1.74.19 |
| MBD-X11DRI | 1.74.19 |
| MBD-X11DRI-T | 1.74.19 |
| MBD-X11DRT-PS | 1.74.19 |
| MBD-X11DRU+ | 1.74.19 |
| MBD-X11QPH+ | 1.74.19 |
| MBD-X11SCE-F | 1.74.19 |
| MBD-X11SCH-F | 1.74.19 |
| MBD-X11SCH-LN4F | 1.74.19 |
| MBD-X11SCL-F | 1.74.19 |
| MBD-X11SCL-IF | 1.74.19 |
| MBD-X11SCL-LN4F | 1.74.19 |
| MBD-X11SCM-F | 1.74.19 |
| MBD-X11SCM-LN8F | 1.74.19 |
| MBD-X11SCZ-F | 1.74.19 |
| MBD-X11SPG-TF | 1.74.19 |
| MBD-X11SPH-NCTF | 1.74.19 |
| MBD-X11SPH-NCTPF | 1.74.19 |
| MBD-X11SPI-TF | 1.74.19 |
| MBD-X11SPL-F | 1.74.19 |
| MBD-X11SPM-F | 1.74.19 |
| MBD-X11SPM-TF | 1.74.19 |
| MBD-X11SPM-TPF | 1.74.19 |
| MBD-X11SPW-CTF-001 | 1.74.19 |
| MBD-X11SPW-CTF | 1.74.19 |
| MBD-X11SPW-TF-001 | 1.74.19 |
| MBD-X11SPW-TF | 1.74.19 |
| MBD-X11DGQ | 3.77.16 |
| MBD-X11DPD-L | 3.77.16 |
| MBD-X11DPD-M25 | 3.77.16 |
| MBD-X11DPFF-SN | 3.77.16 |
| MBD-X11DPL-I | 3.77.16 |
| MBD-X11DPS-R | 3.77.16 |
| MBD-X11DPS-RE | 3.77.16 |
| MBD-X11DPT-L | 3.77.16 |
| MBD-X11DSC+ | 3.77.16 |
| MBD-X11DSF-E | 3.77.16 |
| MBD-X11DSF | 3.77.16 |
| MBD-X11SCW-F-AM047 | 3.77.16 |
| MBD-X11SCW-F | 3.77.16 |
| MBD-H12DST-PS | 3.10.48 |
| MBD-H12DSU-IN | 3.10.48 |
| MBD-H12SST-PS | 3.10.48 |
| MBD-H12SSW-IN | 3.10.48 |
| MBD-H12SSW-NT | 3.10.48 |
| MBD-H11DSI-7401-MA015 | 1.52.23 |
| MBD-H11DSI-DC023 | 1.52.23 |
| MBD-H11DSI-N702-MA015 | 1.52.23 |
| MBD-H11DSI-NT | 1.52.23 |
| MBD-H11DSI | 1.52.23 |
| MBD-H11DSU-IN+ | 1.52.23 |
| MBD-H11DSU-IN | 1.52.23 |
| MBD-H11DSU-IN-TT031 | 1.52.23 |
| MBD-H11SSL-C | 1.52.23 |
| MBD-H11SSL-I | 1.52.23 |
| MBD-H11SSL-I251-MA015 | 1.52.23 |
| MBD-H11SSL-I302P-MA015 | 1.52.23 |
| MBD-H11SSL-I351P-MA015 | 1.52.23 |
| MBD-H11SSL-I401P-MA015 | 1.52.23 |
| MBD-H11SSL-I502P-MA015 | 1.52.23 |
| MBD-H11SSL-N551P-MA015 | 1.52.23 |
| MBD-H11SSL-N702P-MA015 | 1.52.23 |
| MBD-H11SSL-NC | 1.52.23 |
| MBD-H11SSW-IN | 1.52.23 |
| MBD-H11SSW-NT | 1.52.23 |
| MBD-X12DPI-N | 01.07.01 |
| MBD-X12DPI-NT | 01.07.01 |
| MBD-X12QCH+ | 01.07.01 |
| MBD-X12SPA-TF | 01.07.01 |
| MBD-X12SPG-NF | 01.07.01 |
| MBD-A3SPI-4C-HLN4F | 01.07.01 |
| MBD-A3SPI-4C-LN6PF | 01.07.01 |
| MBD-A3SPI-8C-HLN4F | 01.07.01 |
| MBD-A3SPI-8C-LN6PF | 01.07.01 |
| MBD-A3SSV-16C-SPLN10F | 01.07.01 |
| MBD-A3SSV-24C-SPLN10F | 01.07.01 |
| MBD-A3SSV-8C-SPLN10F | 01.07.01 |
| MBD-X12SCA-F | 01.07.01 |
| MBD-X12SCZ-F | 01.07.01 |
| MBD-X12SCZ-QF | 01.07.01 |
| MBD-X12SCZ-TLN4F | 01.07.01 |
| MBD-B12DPT | 1.07.03 |
| MBD-BH12SSI-M25 | 1.07.03 |
| MBD-X12DAI-N6 | 01.07.05 |
| MBD-X12DDW-A6 | 01.07.05 |
| MBD-X12DHM-6 | 01.07.05 |
| MBD-X12DHM | 01.07.05 |
| MBD-X12DPFR-AN6 | 01.07.05 |
| MBD-X12DPG-AR | 01.07.05 |
| MBD-X12DPG-QBT6 | 01.07.05 |
| MBD-X12DPG-QT | 01.07.05 |
| MBD-X12DPG-QT6 | 01.07.05 |
| MBD-X12DPG-U6 | 01.07.05 |
| MBD-X12DPI-N6 | 01.07.05 |
| MBD-X12DPI-NT6 | 01.07.05 |
| MBD-X12DPL-I6 | 01.07.05 |
| MBD-X12DPL-NT6 | 01.07.05 |
| MBD-X12DPU-6 | 01.07.05 |
| MBD-X12DSC-A6 | 01.07.05 |
| MBD-X12SPED-F | 01.07.05 |
| MBD-X12SPI-TF | 01.07.05 |
| MBD-X12SPL-F | 01.07.05 |
| MBD-X12SPL-LN4F | 01.07.05 |
| MBD-X12SPM-LN4F | 01.07.05 |
| MBD-X12SPM-LN6TF | 01.07.05 |
| MBD-X12SPM-TF | 01.07.05 |
| MBD-X12SPO-F | 01.07.05 |
| MBD-X12SPO-NTF | 01.07.05 |
| MBD-X12SPW-F | 01.07.05 |
| MBD-X12SPW-TF-001 | 01.07.05 |
| MBD-X12SPW-TF | 01.07.05 |
| MBD-X12SPZ-LN4F | 01.07.05 |
| MBD-X12SPZ-SPLN6F | 01.07.05 |
| MBD-X12DPD-A6M25 | 1.07.03 |
| MBD-X12DPT-B6 | 1.07.03 |
| MBD-X12DPT-PT6 | 1.07.03 |
| MBD-X12SPT-PT | 1.07.03 |
| MBD-H12DSG-O-CPU | 01.07.01 |
| MBD-H12DSU-INR | 01.07.01 |
| MBD-H12SSL-C | 01.07.01 |
| MBD-H12SSL-CT | 01.07.01 |
| MBD-H12SSL-I | 01.07.01 |
| MBD-H12SSL-NT | 01.07.01 |
| MBD-H12SSW-INL | 01.07.01 |
| MBD-H12SSW-INR | 01.07.01 |
| MBD-H12SSW-NTR | 01.07.01 |
| MBD-H12DGO-6 | 01.07.01 |
| MBD-H12DSG-Q-CPU6 | 01.07.01 |
| MBD-M12SWA-TF | 01.07.01 |
| MBD-H12DGQ-NT6 | 01.07.01 |
| MBD-H12DSI-N6 | 01.07.01 |
| MBD-H12DSI-NT6 | 01.07.01 |
| MBD-H12SSFR-AN6 | 01.07.01 |
| MBD-H12SSW-AN6 | 01.07.01 |
| MBD-B12DPT-6 | 1.07.03 |
| MBD-X12DGO-6 | 01.07.01 |
| MBD-H12SSFF-AN6 | 01.07.03 |
| MBD-X12DPG-OPA6-GD2 | 1.07.03 |
| MBD-X12DPG-OA6 | 1.07.03 |
| MBD-B12DPE-6 | 1.07.03 |
| MBD-B12SPE-CPU-25G | 1.07.03 |
| MBD-X12DSC-6 | 01.07.01 |
| MBD-X12DGQ-R | 1.07.03 |
| MBD-X12DPG-QR | 1.07.03 |
| MBD-X12STW-F | 01.07.03 |
| MBD-X12STW-TF | 01.07.03 |
| MBD-B3ST1-CPU-001 | 1.07.03 |
| MBD-X12标准型-F | 01.04.15 |
| MBD-X12STE-F | 01.04.15 |
| MBD-X13DEM | 01.05.03 |
| MBD-X13DET-B | 01.05.03 |
| MBD-X13DSF-A | 01.05.03 |
| MBD-X13SEDW-F | 01.05.03 |
| MBD-X13SEED-F | 01.05.03 |
| MBD-X13SEED-SF | 01.05.03 |
| MBD-X13SEFR-A | 01.05.03 |
| MBD-X13SEM-F | 01.05.03 |
| MBD-X13SEM-TF | 01.05.03 |
| MBD-X13SET-PT | 01.05.03 |
| MBD-X13SEVR-SP13F | 01.05.03 |
| MBD-X13DAI | 01.05.06 |
| MBD-X13DDW-A | 01.05.06 |
| MBD-X13DEG-OA | 01.05.06 |
| MBD-X13DEG-R | 01.05.06 |
| MBD-X13DEI | 01.05.06 |
| MBD-X13DEI-T | 01.05.06 |
| MBD-X13DGU | 01.05.06 |
| MBD-X13SEI-F | 01.05.06 |
| MBD-X13SEI-TF | 01.05.06 |
| MBD-X13SEW-F | 01.05.06 |
| MBD-X13SEW-TF | 01.05.06 |
| MBD-X13SAE-F | 01.04.15 |
| MBD-X13SAZ-F | 01.04.15 |
| MBD-X13SRA-TF | 01.04.15 |
| MBD-X13SWA-TF | 01.04.15 |
| MBD-X13OEI-CPU | 01.05.03 |
| MBD-X12SPT-G | 01.07.01 |
| MBD-X12SPT-GC | 01.07.01 |
| MBD-B13DEE | 01.05.03 |
| MBD-B13DET | 01.05.03 |
| MBD-B13SE-CPU-25G | 01.05.03 |
| MBD-B13SEG | 01.05.03 |
| MBD-X13DEG-QT | 01.05.03 |
| MBD-X13QEH+ | 01.05.03 |
| MBD-X13SET-G | 01.05.03 |
| MBD-X13SET-GC | 01.05.03 |
| MBD-H13DSG-O-CPU | 01.05.01 |
| MBD-H13DSH | 01.05.01 |
| MBD-H13SSL-N | 01.05.01 |
| MBD-H13SSL-NT | 01.05.01 |
| MBD-H13SST-G | 01.05.01 |
| MBD-H13SST-GC | 01.05.01 |
| MBD-H13SSW | 01.05.01 |
| MBD-H13SVW-N | 01.05.01 |
| MBD-H13SVW-NT | 01.05.01 |
| MBD-X12DGU | 01.07.05 |
| MBD-B4SA1-CPU | 01.05.03 |
| MBD-B4SC1-CPU | 01.05.03 |
| MBD-H13QSH | 01.05.03 |
| MBD-H13SRH | 01.05.03 |
| MBD-H13SSF | 01.05.03 |
| MBD-H13SSH | 01.05.03 |
| MBD-X13SCD-F | 01.05.01 |
| MBD-X13SCH-F | 01.05.01 |
| MBD-X13SCH-LN4F | 01.05.01 |
| MBD-X13SCH-SYS | 01.05.01 |
| MBD-X13SCL-F | 01.05.01 |
| MBD-X13SCL-IF | 01.05.01 |
| MBD-H13SRA-F | 01.05.01 |
| MBD-H13SRA-TF | 01.05.01 |
| MBD-H13SAE-MF | 01.05.01 |
| MBD-H13SRD-F | 01.05.01 |
| MBD-H13SRE-F | 01.05.01 |
| MBD-M13SRD-F | 01.05.01 |
| MBD-H13DSG-O-CPU-D | 01.05.01 |
| MBD-G1SMH-G | 01.05.03 |
| MBD-G1SMH | 01.05.03 |
| MBD-G2DMH-G | 01.05.03 |
| MBD-G2DMH-GI | 01.05.03 |
| MBD-X13DEH | 01.05.03 |
| MBD-X13SAW-F | 01.05.03 |
| MBD-X13SAW-TLN4F | 01.05.03 |
| MBD-X13SCW-F | 01.05.03 |
| MBD-X14DBM-AP | 1.07.03 |
| MBD-X14DBM-APL | 1.07.03 |
| MBD-X14DBM-SP | 1.07.03 |
| MBD-X14DBT-B | 1.07.03 |
| MBD-X14DBT-FAP | 1.07.03 |
| MBD-X14DBT-FLAP | 1.07.03 |
| MBD-X14QBH+ | 1.07.03 |
| MBD-X14SBH-AP | 1.07.03 |
| MBD-X14SBH | 1.07.03 |
| MBD-X14SBM-TF | 1.07.03 |
| MBD-X14SBM-TP4F | 1.07.03 |
| MBD-X14SDV-20C-SP3F | 1.07.03 |
| MBD-X14SDV-32C-SP3F | 1.07.03 |
| MBD-X14SDV-36C-SP3F | 1.07.03 |
| MBD-X14SDV-36CE-SP3F | 1.07.03 |
| MBD-X14SDV-42C-SP3F | 1.07.03 |
| MBD-X14SDW-42C-SP9F | 1.07.03 |
| MBD-H13DSG-OM | 01.05.03 |
| MBD-B3SD1-20C-25G | 01.03.00.03 |
| MBD-H14DSG-O-CPU | 01.01.08.01 |
| MBD-H14DSH | 01.01.08.01 |
| MBD-H14SSL-N | 01.01.08.01 |
| MBD-H14SSL-NT | 01.01.08.01 |
| MBD-H14SST-G | 01.01.08.01 |
| MBD-H14SST-GE | 01.01.08.01 |
| MBD-X14SBHM | 01.03.00.03 |
| MBD-X14DBG-AP | 1.01.16.00 |
| MBD-X14DBI | 1.01.16.00 |
| MBD-X14DBI-T | 1.01.16.00 |
| MBD-X14SBI-F | 1.01.16.00 |
| MBD-X14SBI-TF | 1.01.16.00 |
| MBD-X14SBW-F | 1.01.16.00 |
| MBD-X14SBW-TF | 1.01.16.00 |
| MBD-X13SEB-TF | 01.05.01 |
| MBD-X13DEG-D | 1.04.06 |
| MBD-B14DBE-AP | 01.03.00.03 |
| MBD-B14DBE | 01.03.00.03 |
| MBD-B14DBT | 01.03.00.03 |
| MBD-B14SBE-CPU-25G | 01.03.00.03 |
| MBD-B14SBE-CPU-AP | 01.03.00.03 |
| MBD-X14DBHM | 1.01.07.00 |
| MBD-X14DBG-GD | 01.03.00.03 |
| MBD-X14DBG-XAP | 01.03.00.03 |
| MBD-X14SBT-G | 01.03.00.03 |
| MBD-X14SBT-GAP | 01.03.00.03 |
| MBD-H14DSH-TI036 | 01.03.00.04 |
| MBD-H14DST-F | 01.03.00.04 |
| MBD-H14DSG-OD | 01.03.00.03 |
| MBD-X11DPFF-SNR | 1.01.26 |
| MBM-CMM-6-01-FI005 | 01.02.04 |
| MBB-CMM-6 | 01.02.04 |
| MBM-CMM-6-01-HN004 | 01.02.04 |
| MBM-CMM-6 | 01.02.04 |
| MBM-CMM-6-in001 | 01.02.04 |
| MBD-X12DPT-B6 | 1.07.03 |
| MBD-X12DPT-B | 1.07.03 |
补救措施:
受影响Supermicro 型号需更新BMC固件以缓解这些潜在漏洞。
已创建新版BMC固件以缓解这些潜在漏洞。Supermicro 目前Supermicro 受影响产品进行测试和验证。请查阅版本说明获取解决方案。
开发和公告:
Supermicro 尚未Supermicro 这些漏洞在实际环境中被恶意利用的情况。