The vulnerability of the update mechanism for microprogramming software on Supermicro BMC controllers allows a hacker to execute arbitrary code.

The vulnerability of Supermicro microcontroller microprogramming software arises from insufficient verification of input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code by replacing the uploaded update...