Supermicro Update
3539Warning Date
Severity Level
Warning Number
Target Sector
9 September, 2019
● High
2019-414
All
Description:
Supermicro has released security update to address multiple vulnerabilities in the following versions of its baseboard management controller (BMCs) software:
- Supermicro’s X9, X10, X11, H11 and H12 servers
Threats:
The vulnerabilities cause the following:
- Authentication bypass.
- Gain access to a server.
- Interact with the host system as a raw USB device.
Best practice and Recommendations:
The CERT team encourages users to review Supermicro security advisory and apply the necessary updates:
https://www.supermicro.com/support/security_BMC_virtual_media.cfm