all InfoSec news
Serious Flaws Found in Supermicro BMC Firmware
Malware Analysis, News and Indicators - Latest topics malware.news
A wide range of Supermicro motherboards contain several vulnerabilities in their BMC chip firmware that, when combined, can allow an attacker to gain complete control of a vulnerable system.
The flaws are in the motherboards’ baseboard management controller (BMC) web server, and researchers at Binarly who discovered the bugs found that by combining any of three cross-site scripting vulnerabilities with a command-injection vulnerability, an attacker could gain arbitrary code execution and root privileges. Supermicro has released updated firmware to address …
attacker baseboard management controller binarly bmc bugs chip control controller firmware flaws found management researchers serious server supermicro system vulnerabilities vulnerable web web server