Supermicro server motherboards can be infected with unremovable malware
12 hours ago
- #Supermicro
- #Firmware Vulnerabilities
- #Cybersecurity
- Supermicro motherboards have high-severity vulnerabilities allowing remote installation of undetectable malicious firmware.
- One vulnerability results from an incomplete patch for CVE-2024-10237, while another critical flaw enables similar attacks.
- Exploits can install persistent firmware like ILObleed, which remains active even after OS reinstallation or hardware replacement.
- The vulnerabilities (CVE-2025-7937 and CVE-2025-6198) affect BMCs, enabling remote firmware reflashing and other sensitive operations.
- BMCs function even when servers are off, making them a high-risk target for attackers.