CISA has added CVE-2024-54085 to its known exploited vulnerabilities list as enterprises struggle with incomplete vendor patches.| Network World
An attacker armed with the latest knowledge of BMC vulnerabilities and exploits is poised to take control of your server(s). Given that one of these vulnerabilities, CVE-2024-54085, was recently added to the CISA KEV, we now know exploitation is happening in the wild. Organizations must inventory IT assets and then determine if a given vulnerability […]| Eclypsium | Supply Chain Security for the Modern Enterprise
CISA’s Known Exploited Vulnerabilities catalog has added a baseboard management controller vulnerability for the first time, marking a paradigm shift in attacker behavior.| Eclypsium | Supply Chain Security for the Modern Enterprise
CVE-2024-54085: Kritische Schwachstelle in AMI MegaRAC erlaubt vollständige Remote-Kontrolle über BMC-Server.| Greenbone
AMI MegaRAC baseband management controller vulnerability enables attackers to bypass authentication on the Redfish API and deploy malware implants or brick servers.| CSO Online