CVE-2024-38433

Description

Nuvoton - CWE-305: Authentication Bypass by Primary Weakness An attacker with write access to the SPI-Flash on an NPCM7xx BMC subsystem that uses the Nuvoton BootBlock reference code can modify the u-boot image header on flash parsed by the BootBlock which could lead to arbitrary code execution.

CVSS v3.1 Score

6.7

MEDIUM

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Weakness Type (CWE)

CWE-305 CWE-305

CWE-287 Improper Authentication

Affected Products

Vendor	Product	Versions
nuvoton	npcm750r_firmware	< 10.10.19
nuvoton	npcm750r	All
nuvoton	npcm710r_firmware	< 10.10.19
nuvoton	npcm710r	All
nuvoton	npcm730r_firmware	< 10.10.19
nuvoton	npcm730r	All
nuvoton	npcm705r_firmware	< 10.10.19
nuvoton	npcm705r	All

References

Other References

https://www.gov.il/en/Departments/faq/cve_advisories https://www.gov.il/en/Departments/faq/cve_advisories

Frequently Asked Questions

What is CVE-2024-38433? +

Nuvoton - CWE-305: Authentication Bypass by Primary Weakness An attacker with write access to the SPI-Flash on an NPCM7xx BMC subsystem that uses the Nuvoton BootBlock reference code can modify the u-boot image header on flash parsed by the BootBlock which could lead to arbitrary code execution. It has a CVSS v3.1 base score of 6.7 (MEDIUM).

How severe is CVE-2024-38433? +

CVE-2024-38433 has a CVSS v3.1 score of 6.7 out of 10, rated MEDIUM. This is a medium-severity vulnerability that should be remediated as part of regular maintenance.

What products are affected by CVE-2024-38433? +

CVE-2024-38433 affects products from nuvoton, specifically: npcm705r, npcm705r_firmware, npcm710r, npcm710r_firmware, npcm730r, npcm730r_firmware, npcm750r, npcm750r_firmware. Check the affected products table above for specific version ranges.

How do I check if I'm vulnerable to CVE-2024-38433? +

You can use Secably's free Website Scanner to check your website for known vulnerabilities. For infrastructure scanning, use the Port Scanner to identify exposed services that may be affected. Check the vendor advisories linked above for specific patch and version information.

Related Vulnerabilities

CVE-2026-40582

ChurchCRM is an open-source church management system. In versions prior to 7.2.0, the /api/public/user/login endpoint validates only the username and …

CVE-2025-53534

RatPanel is a server operation and maintenance management panel. In versions 2.3.19 through 2.5.5, when an attacker obtains the backend …

CVE-2024-1403 10.0

In OpenEdge Authentication Gateway and AdminServer prior to 11.7.19, 12.2.14, 12.8.1 on all platforms supported by the OpenEdge product, an …

CVE-2025-24522 10.0

KUNBUS Revolution Pi OS Bookworm 01/2025 is vulnerable because authentication is not configured by default for the Node-RED server. This …

CVE-2024-36388 10.0

MileSight DeviceHub - CWE-305 Missing Authentication for Critical Function

CVE-2026-4670 9.8

Authentication bypass by primary weakness vulnerability in Progress Software MOVEit Automation allows Authentication Bypass. This issue affects MOVEit Automation: from …