Intrusion Prevention

Supermicro.Onboard.IPMI.CloseWindowCgi.Buffer.Overflow

Description

This indicates an attack attempt to exploit a Buffer Overflow vulnerability in Supermicro Onboard IPMI controller web interface.
The vulnerability is due to an insufficient validation error when the vulnerable web interface handles a HTTP request. A remote attacker may be able to exploit this to execute arbitrary code within the context of the application, via a crafted HTTP request.

Affected Products

Supermicro Onboard IPMI (X9SCL/X9SCM) with firmware SMT_X9_214

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Upgrade to the latest version as suggested by the Vendor.
http://www.supermicro.com/products/nfo/files/IPMI/CVE_Update.pdf

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date	Version	Status	Detail
2026-03-12	35.183	Modified	Sig Added

References

www.exploit-db.com/exploits/29666/

ID	37675
Created	Jan 07, 2014
Updated	Mar 12, 2026
CVE ID
Risk
Exploit Prediction Score	86.85%
Default Action	drop
Active
Affected OS	Linux
Affected App	Other
Profile Type	Buffer Errors

Protect

Detect

Respond

Recover

Identify

Network Security

Cloud & Application Security

Endpoint Security

Security Operations

Intrusion Prevention

Supermicro.Onboard.IPMI.CloseWindowCgi.Buffer.Overflow

Description

Affected Products

Impact

Recommended Actions

Coverage

Version Updates

References

Research Center

Services

Protect

Detect

Respond

Recover

Identify

Network Security

Cloud & Application Security

Endpoint Security

Security Operations

Threat Intelligence Center

Support Center

Resource Center

About

Intrusion Prevention

Supermicro.Onboard.IPMI.CloseWindowCgi.Buffer.Overflow

Description

Affected Products

Impact

Recommended Actions

Coverage

Version Updates

References

Threat Intelligence
Center