<ul data-eligibleForWebStory="true"><li>Hackers are exploiting a severe vulnerability in the widely used AMI MegaRAC firmware package, allowing them complete control over servers inside data centers.</li><li>The vulnerability, identified as CVE-2024-54085, permits authentication bypasses by sending a simple web request to a vulnerable BMC device over HTTP.</li><li>CISA has warned about the exploitation of this vulnerability, and Eclypsium, the security firm that discovered it, suspects espionage groups linked to the Chinese government could be involved.</li><li>Administrators are advised to check all BMCs in their server fleets for vulnerability and to consult their server manufacturers for patches and guidance due to the broad scope of potential exploits.</li></ul>

Actively exploited vulnerability gives extraordinary control over server fleets

Discover more