Cyber Resilience

CVE-2024-10238

High

Published: 04 February 2025

Published
04 February 2025
Modified
15 April 2026
KEV Added
Patch
CVSS Score v3.1 7.2 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
EPSS Score 0.0011 28.5th percentile
Risk Priority 14 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2024-10238 is a high-severity Stack-based Buffer Overflow (CWE-121) vulnerability in Supermicro MBD-X12DPG-OA6 (inferred from references). Its CVSS base score is 7.2 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploitation for Privilege Escalation (T1068); ranked at the 28.5th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.

The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-2 (Flaw Remediation).

Deeper analysis

CVE-2024-10238 is a stack-based buffer overflow vulnerability (CWE-121) in the firmware image verification implementation of the Supermicro MBD-X12DPG-OA6 motherboard. The issue arises from a failure to check the fld->used_bytes value, allowing a specially crafted firmware image to trigger the overflow. Published on February 4, 2025, it carries a CVSS v3.1 base score of 7.2 (AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H), indicating high severity due to its potential for significant impact.

An attacker with high privileges (PR:H), such as an administrator with access to the system's firmware update mechanisms, can exploit this vulnerability over the network (AV:N) with low complexity (AC:L) and no user interaction required (UI:N). By uploading a maliciously crafted firmware image, the attacker can trigger the stack overflow, potentially achieving high confidentiality, integrity, and availability impacts (C:H/I:H/A:H) within the unchanged scope (S:U), such as arbitrary code execution or full system compromise on the affected Supermicro motherboard.

Supermicro has published a security advisory addressing this and related BMC/IPMI issues, available at https://www.supermicro.com/en/support/security_BMC_IPMI_Jan_2025, which likely includes firmware updates or patches for mitigation. Security practitioners should apply these updates promptly to affected systems.

EU & UK References

Vulnerability details

A security issue in the firmware image verification implementation at Supermicro MBD-X12DPG-OA6. An attacker can upload a specially crafted image that will cause a stack overflow is caused by not checking fld->used_bytes.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1068 Exploitation for Privilege Escalation Privilege Escalation
Adversaries may exploit software vulnerabilities in an attempt to elevate privileges.
T1190 Exploit Public-Facing Application Initial Access
Adversaries may attempt to exploit a weakness in an Internet-facing host or system to initially access a network.
Why these techniques?

Stack buffer overflow in network-accessible firmware verification (admin auth) directly enables remote exploitation for code execution and system compromise.

Confidence: HIGH · MITRE ATT&CK Enterprise v18.1

CVEs Like This One

CVE-2025-26506Shared CWE-121
CVE-2026-32955Shared CWE-121
CVE-2025-32061Shared CWE-121
CVE-2026-1457Shared CWE-121
CVE-2025-22467Shared CWE-121
CVE-2025-26507Shared CWE-121
CVE-2026-29974Shared CWE-121
CVE-2025-11779Shared CWE-121
CVE-2025-24928Shared CWE-121
CVE-2026-25823Shared CWE-121

Affected Assets

Supermicro
MBD-X12DPG-OA6
inferred from references and description; NVD did not file a CPE for this CVE

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Timely remediation via Supermicro firmware patches directly fixes the stack overflow in the image verification implementation.

prevent

Input validation of firmware image fields like fld->used_bytes prevents specially crafted images from triggering the buffer overflow.

prevent

Memory protection mechanisms such as stack canaries mitigate exploitation of the stack-based buffer overflow vulnerability.

References