CVE-2013-3609

Name of the Vulnerable Software and Affected Versions Supermicro IPMI implementation versions (affected versions not specified)

Description The issue concerns the web interface in the Intelligent Platform Management Interface (IPMI) implementation, where authorization checks rely on JavaScript code on the client. This allows remote authenticated users to bypass intended access restrictions via a crafted request, related to the PrivilegeCallBack function.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.