Summary:
- Binarly discovered a high severity vulnerability, CVE-2025-6198, in Supermicro’s X13SEM-F motherboard firmware.
- Attackers would need admin access to exploit the vulnerabilities, making remote exploitation difficult.
- Supermicro’s validation logic issues were uncovered, with previous flaws allowing for rogue firmware to be added to the system.
Article:
During a recent investigation, Binarly uncovered another critical vulnerability in Supermicro’s X13SEM-F motherboard firmware. This vulnerability, known as CVE-2025-6198, has been rated as high severity with a CVSS score of 7.2. While this vulnerability, along with CVE-2025-7937, could pose significant security risks if exploited, attackers would first need to gain admin access to the systems in order to interact with the firmware.Although remote exploitation of these vulnerabilities may seem unlikely, history has shown that attackers can obtain rogue admin access through indirect methods. The key point here is that while the vulnerabilities may not be exploitable remotely, the potential for unauthorized access remains a serious concern.
The flaws in Supermicro’s validation logic were also brought to light during this research. Previous vulnerabilities, such as CVE-2024-10237, allowed for the manipulation of the firmware map table (fwmap) to deceive the validation process. Although Supermicro made adjustments to detect such manipulations, Binarly researchers were able to re-target the modified validation checks through CVE-2025-7937.
In conclusion, it is crucial for organizations to remain vigilant in addressing firmware vulnerabilities and ensuring robust security measures are in place to prevent unauthorized access to critical systems. By staying informed and proactive in addressing these vulnerabilities, businesses can better protect themselves from potential cyber threats.
