Catalin Cimpanu, writing for ZDNet: More than 47,000 workstations and servers, possibly more, running on Supermicro motherboards are currently open to attacks because administrators have left an internal component exposed on the internet. These systems are vulnerable to a new set of vulnerabilities named USBAnywhere that affect the baseboard management controller (BMC) firmware of Supermicro motherboards. Patches are available to fix the USBAnywhere vulnerabilities, but Supermicro and security experts recommend restricting access to BMC management interfaces from the internet, as a precaution and industry best practice.
Read more of this story at Slashdot.
Source:
https://tech.slashdot.org/story/19/09/03/2029210/over-47000-supermicro-servers-are-exposing-bmc-ports-on-the-internet?utm_source=rss1.0mainlinkanon&utm_medium=feed