
Critical Security Alert: New Supermicro BMC Vulnerabilities Enable Persistent Backdoor Access
“Supermicro BMC Backdoors and Persistent Firmware Vulnerabilities,” is a critical security alert detailing newly discovered and sophisticated flaws in Supermicro’s Baseboard Management Controller (BMC) firmware, which allow attackers to create persistent backdoors that survive operating system reinstalls. Specifically, two vulnerabilities, CVE-2024-10237 and the more severe CVE-2025-6198 (which compromises the system’s Root of Trust), are explained as enabling access that traditional security tools cannot detect. The secondary source, an excerpt about the company Technijian, establishes itself as a managed IT services provider specializing in cybersecurity solutions and incident response, positioning their expertise to help organizations mitigate high-level threats like the Supermicro BMC vulnerabilities through specialized firmware analysis and strategic consulting. Both texts emphasize the need for urgent firmware updates and comprehensive security programs to counter these hard-to-detect, deep-level compromises in enterprise infrastructure. ... Read More