InfoWorld

Despite patches, Supermicro’s IPMI firmware far from secure, researchers say

The IPMI (Intelligent Platform Management Interface) implementation found in motherboards from server manufacturer Supermicro suffers from serious vulnerabilities that could allow attackers to ...
Ars Technica

Vulnerabilities in Supermicro BMCs could allow for unkillable server rootkits

If your organization uses servers that are equipped with baseboard management controllers from Supermicro, it may be time, once again, to patch seven high-severity vulnerabilities that attackers could ...
Threat Post

Plaintext Supermicro IPMI Credentials Exposed

Weaknesses in Supermicro IPMI-based baseboard management controllers expose remote passwords in plaintext. Much has been written about the insecurity of the IPMI protocol present inside embedded ...
Ars Technica

SuperMicro, IPMI, and Java

Paladin, I think you nailed it. A BMC can use a web interface for resets, BIOS uploads, virtual media config, etc, but remote console access should be an authenticated VNC server to which you can ...
ZDNet

Over 47,000 Supermicro servers are exposing BMC ports on the internet

More than 47,000 workstations and servers, possibly more, running on Supermicro motherboards are currently open to attacks because administrators have left an internal component exposed on the ...