6.7
MEDIUM
CVE-2018-13787
Supermicro Firmware Modification
Description

Certain Supermicro X11S, X10, X9, X8SI, K1SP, C9X299, C7, B1, A2, and A1 products have a misconfigured Descriptor Region, allowing OS programs to modify firmware.

INFO

Published Date :

July 9, 2018, 6:29 p.m.

Last Modified :

Oct. 3, 2019, 12:03 a.m.

Source :

[email protected]

Remotely Exploitable :

No

Impact Score :

5.9

Exploitability Score :

0.8
Affected Products

The following products are affected by CVE-2018-13787 vulnerability. Even if cvefeed.io is aware of the exact versions of the products that are affected, the information is not represented in the table below.

ID Vendor Product Action
1 Supermicro x11sae_firmware
2 Supermicro x11sae_m_firmware
3 Supermicro x11sat_firmware
4 Supermicro x11sba_firmware
5 Supermicro x11sra_firmware
6 Supermicro x11srm_firmware
7 Supermicro x11ssn_firmware
8 Supermicro x11ssq_firmware
9 Supermicro x11ssql_firmware
10 Supermicro x11ssz_firmware
11 Supermicro x11ssv_firmware
12 Supermicro x10srw_firmware
13 Supermicro x10srm_firmware
14 Supermicro x10srl_firmware
15 Supermicro x10sri_firmware
16 Supermicro x10srh_firmware
17 Supermicro x10srg_firmware
18 Supermicro x10srd_firmware
19 Supermicro x10sra_firmware
20 Supermicro x10sdvt_firmware
21 Supermicro x10sdvf_firmware
22 Supermicro x10sde_firmware
23 Supermicro x10sddf_firmware
24 Supermicro x10sba_firmware
25 Supermicro x10qrh_firmware
26 Supermicro x10dsn_firmware
27 Supermicro x10dscp_firmware
28 Supermicro x10dsc_firmware
29 Supermicro x10drx_firmware
30 Supermicro x10drwn_firmware
31 Supermicro x10drw_firmware
32 Supermicro x10drux_firmware
33 Supermicro x10drul_firmware
34 Supermicro x10dru_firmware
35 Supermicro x10drts_firmware
36 Supermicro x10drtps_firmware
37 Supermicro x10drtl_firmware
38 Supermicro x10drth_firmware
39 Supermicro x10drtb_firmware
40 Supermicro x10drt_firmware
41 Supermicro x10drs_firmware
42 Supermicro x10drln_firmware
43 Supermicro x10drlc_firmware
44 Supermicro x10drl_firmware
45 Supermicro x10dri1_firmware
46 Supermicro x10drh4_firmware
47 Supermicro x10drh_firmware
48 Supermicro x10drgo_firmware
49 Supermicro x10drgh_firmware
50 Supermicro x10drg_firmware
51 Supermicro x10drfr_firmware
52 Supermicro x10drfg_firmware
53 Supermicro x10drff_firmware
54 Supermicro x10drdl_firmware
55 Supermicro x10drd_firmware
56 Supermicro x10drc_firmware
57 Supermicro x10dgo_firmware
58 Supermicro x10ddwn_firmware
59 Supermicro x10ddwi_firmware
60 Supermicro x10ddw4_firmware
61 Supermicro x10ddw3_firmware
62 Supermicro x10dax_firmware
63 Supermicro x10dali_firmware
64 Supermicro x10dal_firmware
65 Supermicro x10dai_firmware
66 Supermicro b10drt_firmware
67 Supermicro b10dri_firmware
68 Supermicro b10drg_firmware
69 Supermicro x9sae_firmware
70 Supermicro x9drth_firmware
71 Supermicro x9drgqf_firmware
72 Supermicro x9drffp_firmware
73 Supermicro x9drf_firmware
74 Supermicro x9dbl_firmware
75 Supermicro x8siu_firmware
76 Supermicro x8sit_firmware
77 Supermicro x8sil_firmware
78 Supermicro x8sie_firmware
79 Supermicro x8sia_firmware
80 Supermicro k1spi_firmware
81 Supermicro k1spes_firmware
82 Supermicro c9x299_firmware
83 Supermicro c7z97oc_firmware
84 Supermicro c7z97mf_firmware
85 Supermicro c7z87oc_firmware
86 Supermicro c7z370l_firmware
87 Supermicro c7z370i_firmware
88 Supermicro c7z270p_firmware
89 Supermicro c7z270m_firmware
90 Supermicro c7z270l_firmware
91 Supermicro c7z270cg_firmware
92 Supermicro c7z270c_firmware
93 Supermicro c7z170oce_firmware
94 Supermicro c7z170o_firmware
95 Supermicro c7z170_firmware
96 Supermicro c7x99oc_firmware
97 Supermicro c7q270_firmware
98 Supermicro c7h270_firmware
99 Supermicro c7b250_firmware
100 Supermicro b1sd2tf_firmware
101 Supermicro b1sa4_firmware
102 Supermicro b1dri_firmware
103 Supermicro a2sav_firmware
104 Supermicro a2sap_firmware
105 Supermicro a2san_firmware
106 Supermicro a1srm_firmware
107 Supermicro a1sam_firmware
108 Supermicro a1sai1_firmware
109 Supermicro a1sai_firmware
110 Supermicro a1sa_firmware
: Total Affected Vendor : 1 | Products : 110
References to Advisories, Solutions, and Tools

Here, you will find a curated list of external links that provide in-depth information, practical solutions, and valuable tools related to CVE-2018-13787.

URL Resource
https://blog.eclypsium.com/2018/06/07/firmware-vulnerabilities-in-supermicro-systems/ Third Party Advisory
https://www.bleepingcomputer.com/news/security/firmware-vulnerabilities-disclosed-in-supermicro-server-products/ Third Party Advisory
https://www.supermicro.com/support/security_Intel-SA-00088.cfm?pg=X10#tab Third Party Advisory

We scan GitHub repositories to detect new proof-of-concept exploits. Following list is a collection of public exploits and proof-of-concepts, which have been published on GitHub (sorted by the most recently updated).

Results are limited to the first 15 repositories due to potential performance issues.

The following list is the news that have been mention CVE-2018-13787 vulnerability anywhere in the article.

The following table lists the changes that have been made to the CVE-2018-13787 vulnerability over time.

Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability's severity, exploitability, or other characteristics.

  • CVE Modified by [email protected]

    May. 14, 2024

    Action Type Old Value New Value
  • CWE Remap by [email protected]

    Oct. 03, 2019

    Action Type Old Value New Value
    Changed CWE CWE-284 CWE-20 CWE-119 NVD-CWE-noinfo
  • Initial Analysis by [email protected]

    Sep. 10, 2018

    Action Type Old Value New Value
    Added CVSS V2 (AV:L/AC:L/Au:N/C:C/I:C/A:C)
    Added CVSS V3 AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
    Changed Reference Type https://blog.eclypsium.com/2018/06/07/firmware-vulnerabilities-in-supermicro-systems/ No Types Assigned https://blog.eclypsium.com/2018/06/07/firmware-vulnerabilities-in-supermicro-systems/ Third Party Advisory
    Changed Reference Type https://www.bleepingcomputer.com/news/security/firmware-vulnerabilities-disclosed-in-supermicro-server-products/ No Types Assigned https://www.bleepingcomputer.com/news/security/firmware-vulnerabilities-disclosed-in-supermicro-server-products/ Third Party Advisory
    Changed Reference Type https://www.supermicro.com/support/security_Intel-SA-00088.cfm?pg=X10#tab No Types Assigned https://www.supermicro.com/support/security_Intel-SA-00088.cfm?pg=X10#tab Third Party Advisory
    Added CWE CWE-284
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x11ssz_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x11ssz:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x11ssv_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x11ssv:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x11ssql_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x11ssql:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x11ssq_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x11ssq:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x11ssn_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x11ssn:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x11srm_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x11srm:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x11sra_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x11sra:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x11sba_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x11sba:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x11sat_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x11sat:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x11sae_m_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x11sae_m:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x11sae_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x11sae:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x10srw_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x10srw:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x10srm_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x10srm:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x10srl_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x10srl:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x10sri_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x10sri:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x10srh_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x10srh:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x10srg_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x10srg:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x10srd_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x10srd:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x10sra_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x10sra:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x10sdvt_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x10sdvt:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x10sdvf_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x10sdvf:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x10sde_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x10sde:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x10sddf_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x10sddf:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x10sba_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x10sba:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x10qrh_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x10qrh:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x10dsn_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x10dsn:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x10dscp_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x10dscp:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x10dsc_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x10dsc:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x10drx_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x10drx:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x10drwn_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x10drwn:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x10drw_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x10drw:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x10drux_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x10drux:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x10drul_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x10drul:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x10dru_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x10dru:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x10drts_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x10drts:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x10drtps_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x10drtps:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x10drtl_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x10drtl:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x10drth_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x10drth:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x10drtb_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x10drtb:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x10drt_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x10drt:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x10drs_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x10drs:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x10drln_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x10drln:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x10drlc_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x10drlc:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x10drl_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x10drl:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x10dri1_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x10dri1:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x10drh4_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x10drh4:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x10drh_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x10drh:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x10drgo_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x10drgo:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x10drgh_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x10drgh:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x10drg_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x10drg:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x10drfr_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x10drfr:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x10drfg_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x10drfg:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x10drff_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x10drff:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x10drdl_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x10drdl:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x10drd_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x10drd:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x10drc_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x10drc:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x10dgo_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x10dgo:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x10ddwn_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x10ddwn:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x10ddwi_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x10ddwi:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x10ddw4_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x10ddw4:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x10ddw3_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x10ddw3:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x10dax_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x10dax:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x10dali_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x10dali:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x10dal_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x10dal:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x10dai_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x10dai:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:b10drt_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:b10drt:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:b10dri_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:b10dri:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:b10drg_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:b10drg:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x9sae_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x9sae:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x9drth_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x9drth:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x9drgqf_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x9drgqf:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x9drffp_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x9drffp:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x9drf_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x9drf:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x9dbl_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x9dbl:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x8siu_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x8siu:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x8sit_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x8sit:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x8sil_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x8sil:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x8sie_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x8sie:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:x8sia_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:x8sia:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:k1spi_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:k1spi:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:k1spes_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:k1spes:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:c9x299_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:c9x299:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:c7z97oc_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:c7z97oc:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:c7z97mf_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:c7z97mf:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:c7z87oc_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:c7z87oc:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:c7z370l_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:c7z370l:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:c7z370i_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:c7z370i:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:c7z270p_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:c7z270p:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:c7z270m_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:c7z270m:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:c7z270l_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:c7z270l:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:c7z270cg_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:c7z270cg:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:c7z270c_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:c7z270c:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:c7z170oce_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:c7z170oce:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:c7z170o_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:c7z170o:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:c7z170_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:c7z170:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:c7x99oc_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:c7x99oc:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:c7q270_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:c7q270:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:c7h270_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:c7h270:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:c7b250_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:c7b250:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:b1sd2tf_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:b1sd2tf:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:b1sa4_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:b1sa4:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:b1dri_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:b1dri:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:a2sav_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:a2sav:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:a2sap_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:a2sap:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:a2san_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:a2san:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:a1srm_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:a1srm:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:a1sam_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:a1sam:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:a1sai1_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:a1sai1:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:a1sai_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:a1sai:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:supermicro:a1sa_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:supermicro:a1sa:-:*:*:*:*:*:*:*
EPSS is a daily estimate of the probability of exploitation activity being observed over the next 30 days. Following chart shows the EPSS score history of the vulnerability.
CWE - Common Weakness Enumeration

While CVE identifies specific instances of vulnerabilities, CWE categorizes the common flaws or weaknesses that can lead to vulnerabilities. CVE-2018-13787 is associated with the following CWEs:

Common Attack Pattern Enumeration and Classification (CAPEC)

Common Attack Pattern Enumeration and Classification (CAPEC) stores attack patterns, which are descriptions of the common attributes and approaches employed by adversaries to exploit the CVE-2018-13787 weaknesses.

Exploit Prediction

EPSS is a daily estimate of the probability of exploitation activity being observed over the next 30 days.

0.05 }} 0.01%

score

0.18621

percentile

CVSS30 - Vulnerability Scoring System
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
: