Two New Supermicro BMC Bugs Allow Malicious Firmware to Evade Root of Trust Security

Updated on September 23, 2025

Cybersecurity researchers have disclosed details of two security vulnerabilities impacting Supermicro Baseboard Management Controller (BMC) firmware that could potentially allow attackers to bypass crucial verification steps and update the system with a specially crafted image.
The medium-severity vulnerabilities, both of which stem from improper verification of a cryptographic signature, are…

Read the rest of the story at Read More

Source: The Hacker News

January 23, 2025 Uncategorized

Custom Backdoor Exploiting Magic Packet ...

June 26, 2025 Uncategorized

Critical RCE Flaws in Cisco ISE and ISE-...

November 22, 2024 Uncategorized

Two New Supermicro BMC Bugs Allow Malicious Firmware to Evade Root of Trust Security

Related posts

Custom Backdoor Exploiting Magic Packet ...

Critical RCE Flaws in Cisco ISE and ISE-...

PyPI Attack: ChatGPT, Claude Impersonato...

Leave a Comment Cancel reply

Recent News

5 Critical Questions For Adopting an AI Security Solution

⚡ Weekly Recap: Oracle 0-Day, BitLocker Bypass, VMScape, WhatsApp Worm & More

Chinese Cybercrime Group Runs Global SEO Fraud Ring Using Compromised IIS Servers

Zimbra Zero-Day Exploited to Target Brazilian Military via Malicious ICS Files

Oracle Rushes Patch for CVE-2025-61882 After Cl0p Exploited It in Data Theft Attacks

CometJacking: One Click Can Turn Perplexity’s Comet AI Browser Into a Data Thief

Scanning Activity on Palo Alto Networks Portals Jump 500% in One Day

Detour Dog Caught Running DNS-Powered Malware Factory for Strela Stealer

Rhadamanthys Stealer Evolves: Adds Device Fingerprinting, PNG Steganography Payloads

Researchers Warn of Self-Spreading WhatsApp Malware Named SORVEPOTEL