Alex Matrosov
@matrosov.bsky.social
This research demonstrates how easily full persistence can be achieved on Supermicro BMC, allowing complete takeover of the server.
- CVE-2025-7937: bypassed “fix” for CVE-2024-10237.
- CVE-2025-6198: Supermicro RoT bypass.
www.binarly.io/blog/broken-...
- CVE-2025-7937: bypassed “fix” for CVE-2024-10237.
- CVE-2025-6198: Supermicro RoT bypass.
www.binarly.io/blog/broken-...
September 24, 2025 at 9:23 PM
This research demonstrates how easily full persistence can be achieved on Supermicro BMC, allowing complete takeover of the server.
- CVE-2025-7937: bypassed “fix” for CVE-2024-10237.
- CVE-2025-6198: Supermicro RoT bypass.
www.binarly.io/blog/broken-...
- CVE-2025-7937: bypassed “fix” for CVE-2024-10237.
- CVE-2025-6198: Supermicro RoT bypass.
www.binarly.io/blog/broken-...