The vulnerability in the virtual remote connection service for microprogramming control devices of the BMC Supermicro family allows a hacker to gain full control over the device.

The vulnerability of the virtual remote connection service for Microprogramming Software Control Devices of Supermicro is due to insufficient security restrictions for critical management functions. Exploiting this vulnerability allows a malicious actor to gain full control over the device by...