Security News > 2019 > September > BMC vulnerabilities in Supermicro servers allow remote takeover, data exfiltration attacks
2019-09-03 11:10
A slew of vulnerabilities affecting the baseboard management controllers (BMCs) of Supermicro servers could be exploited by remote attackers to gain access to corporate networks, Eclypsium researchers have discovered. The flaws, collectively dubbed USBAnywhere, could allow attackers to connect to a server and connect a device to it remotely, over any network including the Internet, as if they had physical access to a server’s USB port. What are baseboard management controllers? BMCs are specialized microcontrollers … More → The post BMC vulnerabilities in Supermicro servers allow remote takeover, data exfiltration attacks appeared first on Help Net Security.
News URL
http://feedproxy.google.com/~r/HelpNetSecurity/~3/NLO9BU6Q4wA/
Related news
- CUPS vulnerabilities could be abused for DDoS attacks (source)
- New scanner finds Linux, UNIX servers exposed to CUPS RCE attacks (source)
- Cybercriminals Exploiting Docker API Servers for SRBMiner Crypto Mining Attacks (source)
- Exploit released for new Windows Server "WinReg" NTLM Relay attack (source)
- OvrC Platform Vulnerabilities Expose IoT Devices to Remote Attacks and Code Execution (source)
- Critical RCE bug in VMware vCenter Server now exploited in attacks (source)