Primary

Context

Supermicro BMC Firmware Improper Signature Verification Vulnerability on MBD-X12STW-F

Vulnerability

A vulnerability exists in the Supermicro BMC firmware validation logic for the MBD-X12STW-F motherboard. This issue allows an attacker to update the system firmware with a specially crafted image, exploiting improper verification of cryptographic signatures.

Impact

Exploitation of this vulnerability could lead to unauthorized firmware updates, potentially allowing for malicious code execution or system manipulation.

Remediation

All affected Supermicro motherboards will require a BMC firmware update to address this vulnerability. Supermicro has developed an updated BMC firmware, which is currently being tested and validated. Users should consult the Supermicro Release Notes for upgrade instructions and to ensure their motherboard and firmware versions are compatible with the update.

Added: Jan 16, 2026, 9:21 AM

Updated: Jan 16, 2026, 4:31 PM

Vulnerability Rating

Custom Algorithm

spread

2.4

impact

7.5

exploitability

4.7

remediation

0.0

relevance

2.2

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.4

impact

7.5

exploitability

4.7

remediation

0.0

relevance

2.2

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Supermicro BMC Firmware Improper Signature Verification Vulnerability on MBD-X12STW-F

Vulnerability

Impact

Remediation

Affected Products

Supermicro MBD-X12STW-F

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating