In January 2025, Supermicro released patches addressing critical vulnerabilities in its Baseboard Management Controller (BMC) firmware validation logic. Despite these updates, subsequent research has uncovered bypass techniques that undermine signature verification and even compromise the BMC’s Root of Trust (RoT). Among these, CVE-2024-10237 stemmed from a logical vulnerability in the validation process, allowing malicious firmware […]

The post Attackers Exploit BMC Firmware Vulnerabilities to Bypass Signature Verification appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Mayura Kathir

Source: gbHackers
Source Link: https://gbhackers.com/bmc-firmware-vulnerabilities/