CVE-2025-8076 HIGH

CVE-2025-8076: A stack buffer overflow vulnerability exists in the Supermicro BMC Web function

Vendor Smci
Product MBD-X13SEDW-F
Weakness CWE-121
Published November 18, 2025
Last update February 26, 2026

CVSS base score

7.2/10
Attack vector Network
Attack complexity Low
Privileges required High
User interaction None
Confidentiality High
Integrity High

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

What the vulnerability does

01Description

There is a vulnerability in the Supermicro BMC web function at Supermicro MBD-X13SEDW-F. After logging into the BMC Web server, an attacker can use a specially crafted payload to trigger the Stack buffer overflow vulnerability.

Key dates

02Disclosure timeline

November 18, 2025 CVE published
February 26, 2026 Record updated

Related vulnerabilities

04Related CVE