Alert GCSA-25111 - Vulnerabilita' in Supermicro BMC Firmware
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
******************************************************************
alert ID: GCSA-25111
data: 25 settembre 2025
titolo: Vulnerabilita' in Supermicro BMC Firmware
******************************************************************
:: Descrizione del problema
Sono state individuate due vulnerabilita' di sicurezza che interessano
il Baseboard Management Controller (BMC) di Supermicro.
Tali bug potrebbero potenzialmente consentire ad aggressori remoti
di installare un firmware dannoso.
CVE-2025-7937 (CVSS score: 6.6)
A crafted firmware image can bypass the Supermicro BMC firmware verification logic of
Root of Trust (RoT) 1.0 to update the system firmware by redirecting the program to
a fake "fwmap" table in the unsigned region.
CVE-2025-6198 (CVSS score: 6.4)
A crafted firmware image can bypass the Supermicro BMC firmware verification logic of
the Signing Table to update the system firmware by redirecting the program to
a fake signing table ("sig_table") in the unsigned region.
Maggiori informazioni sono disponibili alla sezione "Riferimenti".
:: Software / Dispositivi interessati
https://www.supermicro.com/en/support/security_BMC_IPMI_Sept_2025
:: Impatto
Bypass delle funzionalita' di sicurezza (SFB)
Esecuzione remota di codice arbitrario (RCE)
Accesso a dati riservati (ID)
:: Soluzioni
Supermicro ha rilasciato i firmware aggiornati per i modelli interessati.
:: Riferimenti
Vulnerabilities in Supermicro BMC Firmware, September 2025
https://www.supermicro.com/en/support/security_BMC_IPMI_Sept_2025
The Hacker News
https://thehackernews.com/2025/09/two-new-supermicro-bmc-bugs-allow.html
Bleeping Computer
https://www.bleepingcomputer.com/news/security/new-supermicro-bmc-flaws-can-create-persistent-backdoors/
SecurityWeek
https://www.securityweek.com/patch-bypassed-for-supermicro-vulnerability-allowing-bmc-hack/
Riferimenti CVE
https://www.cve.org/CVERecord?id=CVE-2025-7937
https://www.cve.org/CVERecord?id=CVE-2025-6198
GARR CERT Security Alert - subscribe/unsubscribe:
https://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----
iGsEAREIACsWIQTGpdiR5MqstacBGHbBnEyTZRJgQgUCaNUOWg0cY2VydEBnYXJy
Lml0AAoJEMGcTJNlEmBCoL4AoKy488+EbNdub3z4szTFeH7vIQwaAJwM5mh7Jg06
7G9TNjYVQmugAtO8JQ==
=J1AB
-----END PGP SIGNATURE-----
Hash: SHA256
******************************************************************
alert ID: GCSA-25111
data: 25 settembre 2025
titolo: Vulnerabilita' in Supermicro BMC Firmware
******************************************************************
:: Descrizione del problema
Sono state individuate due vulnerabilita' di sicurezza che interessano
il Baseboard Management Controller (BMC) di Supermicro.
Tali bug potrebbero potenzialmente consentire ad aggressori remoti
di installare un firmware dannoso.
CVE-2025-7937 (CVSS score: 6.6)
A crafted firmware image can bypass the Supermicro BMC firmware verification logic of
Root of Trust (RoT) 1.0 to update the system firmware by redirecting the program to
a fake "fwmap" table in the unsigned region.
CVE-2025-6198 (CVSS score: 6.4)
A crafted firmware image can bypass the Supermicro BMC firmware verification logic of
the Signing Table to update the system firmware by redirecting the program to
a fake signing table ("sig_table") in the unsigned region.
Maggiori informazioni sono disponibili alla sezione "Riferimenti".
:: Software / Dispositivi interessati
https://www.supermicro.com/en/support/security_BMC_IPMI_Sept_2025
:: Impatto
Bypass delle funzionalita' di sicurezza (SFB)
Esecuzione remota di codice arbitrario (RCE)
Accesso a dati riservati (ID)
:: Soluzioni
Supermicro ha rilasciato i firmware aggiornati per i modelli interessati.
:: Riferimenti
Vulnerabilities in Supermicro BMC Firmware, September 2025
https://www.supermicro.com/en/support/security_BMC_IPMI_Sept_2025
The Hacker News
https://thehackernews.com/2025/09/two-new-supermicro-bmc-bugs-allow.html
Bleeping Computer
https://www.bleepingcomputer.com/news/security/new-supermicro-bmc-flaws-can-create-persistent-backdoors/
SecurityWeek
https://www.securityweek.com/patch-bypassed-for-supermicro-vulnerability-allowing-bmc-hack/
Riferimenti CVE
https://www.cve.org/CVERecord?id=CVE-2025-7937
https://www.cve.org/CVERecord?id=CVE-2025-6198
GARR CERT Security Alert - subscribe/unsubscribe:
https://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----
iGsEAREIACsWIQTGpdiR5MqstacBGHbBnEyTZRJgQgUCaNUOWg0cY2VydEBnYXJy
Lml0AAoJEMGcTJNlEmBCoL4AoKy488+EbNdub3z4szTFeH7vIQwaAJwM5mh7Jg06
7G9TNjYVQmugAtO8JQ==
=J1AB
-----END PGP SIGNATURE-----