Home Latest Cyber Security News | Network Security Hacking Multiple Vulnerabilities In MegaRAC BMC Risked Server Security
Latest Cyber Security News | Network Security HackingNewsVulnerabilities

Multiple Vulnerabilities In MegaRAC BMC Risked Server Security

by Abeerah Hashim
written by Abeerah Hashim

Researchers discovered multiple vulnerabilities in MegaRAC BMC firmware that riddled the security of numerous server brands. IT admins must ensure prompt updates to their servers to avoid potential exploits.

MegaRAC BMC Vulnerabilities

Eclypsium Research team has found three different vulnerabilities in the MegaRAC Baseboard Management Controller (BMC) software.

MegaRAC BMC is a remote management solution from American Megatrends, Inc. (AMI). It currently empowers servers from numerous popular brands such as AMD, Asus, Dell EMC, Huawei, Nvidia, and Qualcomm.

As elaborated in their detailed post, the vulnerabilities include,

  • CVE-2022-40259 (CVSS 9.5) – an arbitrary code execution vulnerability in the Redfish API implementation. A specially crafted exploit from an attacker with minimum access to the target device could trigger the flaw.
  • CVE-2022-40242 (CVSS 8.3) – Default credentials for UID = 0 shell via SSH. The researchers stated that they found “a hash in etc/shadow for the sysadmin user,” cracking, which made them reach the default credentials. Exploiting this vulnerability merely requires an attacker to have remote access to the target device.
  • CVE-2022-2827 (CVSS 7.5) – when resetting the password, one of the parameters could allow an adversary to discover various user accounts by querying possible usernames. It then allows the attacker to perform credential stuffing or brute force attacks against those accounts.

Given the trivial exploitation scenarios for these critical flaws, researchers suggest that BMC servers should be correctly configured, however they noticed most BMC servers exposed to the internet due to improper security or misconfigurations. These vulnerabilities immensely heighten server security by potentially inviting online attackers.

Recommended Mitigations

Researchers have shared numerous mitigation strategies for users to prevent vulnerabilities and exploitation risks. Some of these include the basic security procedures that are a must-have for businesses and IT admins, such as restricting device access to authorized users, keeping the firmware/software up-to-date, and disabling unnecessary remote access.

Moreover, they also advise disabling built-in admin accounts and performing regular vulnerability scans of critical server firmware for prompt remediation.

Let us know your thoughts in the comments.

Abeerah has been a passionate blogger for several years with a particular interest towards science and technology. She is crazy to know everything about the latest tech developments. Knowing and writing about cybersecurity, hacking, and spying has always enchanted her. When she is not writing, what else can be a better pastime than web surfing and staying updated about the tech world! Reach out to me at: [email protected]

You may also like

Multiple Vulnerabilities Found In Forminator WordPress Plugin

Palo Alto Networks Patched A Pan-OS Vulnerability Under...

Apple Removed Numerous Apps From China App Store

Xiid SealedTunnel: Unfazed by Yet Another Critical Firewall...

Personal Data Exposed in Massive Global Hack: Understanding...

Guardz Welcomes SentinelOne as Strategic Partner and Investor...

Invision Community Vulnerabilities Risk E-Commerce Websites

Microsoft April Patch Tuesday Fixes Dozens of RCE...

Match Systems publishes report on the consequences of...

Cypago Announces New Automation Support for AI Security...