Acer
Predator
ConceptD
Planet9
Vulnerable BMC firmware of Enterprise servers - Acer Community
<main> <article class="userContent"> <h2 data-id="vulnerability-details%3A"> VULNERABILITY DETAILS:</h2><p>Researchers have identified a vulerability with Vertiv BMC (Baseboard Management controllers) that may cause the server to be hacked to execute any code attack.</p><p>One vulnerability is that the BMC firmware does not perform cryptographic signature verification before receiving updates and writing to the SPI flash memory.</p><p>The second vulnerability is that the firmware update has an instruction injection vulnerability.</p><p>Both vulnerabilities allow an attacker to use the host administrator privileges to execute arbitrary code on the firmware and make permanent changes to the SPI flash memory contents in the BMC. The attacker can also change the BMC environment to prevent future firmware updates through the software mechanism, so that the BMC can be permanently destroyed.</p><h2 data-id="impact-scope%3A">Impact Scope:</h2><p>Acer Altos Servers with ASPEED AST2300 / AST2400 / AST2500 BMCs with Vertiv Avocent MergePoint EMS firmware.</p><h2 data-id="resolution%3A">Resolution:</h2><p>Acer is working closely with vendors to address certain baseboard management controller (BMC) firmware vulnerabilities that affect some of its Altos server products. We recommend that customers limit their risk by following common security best practices, restricting privileged access to trusted administrators, and by applying the latest BMC and CMC firmware updates below.</p><h2 data-id="affected-acer-models-and-firmware-updates%3A">Affected Acer Models and firmware updates:</h2><div class="blockquote"><div class="blockquote-content"><p class="blockquote-line"><strong>Altos T310 F3 </strong></p><p class="blockquote-line">BMC Firmware -<strong> </strong><a href="https://global-download.acer.com/SupportFiles/Files/Firmware/Update/BMC_FW_V1.41.zip" rel="nofollow noreferrer ugc">v1.41</a> </p><p class="blockquote-line"> </p><p class="blockquote-line"><strong>AR460 F3 </strong></p><p class="blockquote-line">BMC Firmware -<strong> </strong><a href="https://global-download.acer.com/SupportFiles/Files/Firmware/Update/BMC_FW_V8.86.zip" rel="nofollow noreferrer ugc">v8.86</a> </p><p class="blockquote-line"> </p><p class="blockquote-line"><strong>AR480 F3 </strong></p><p class="blockquote-line">BMC Firmware -<strong> </strong><a href="https://global-download.acer.com/SupportFiles/Files/Firmware/Update/BMC_FW_V8.86.zip" rel="nofollow noreferrer ugc">v8.86 </a></p><p class="blockquote-line"><strong> </strong></p><p class="blockquote-line"><strong>Altos W2050-W270h F4 </strong></p><p class="blockquote-line">BMC Firmware -<strong> </strong><a href="https://global-download.acer.com/SupportFiles/Files/Firmware/Update/BMC_FW_V1.91.zip" rel="nofollow noreferrer ugc">v1.91</a> (only for Vertiv BMC Firmware) </p><p class="blockquote-line">CMC Firmware - <a href="https://global-download.acer.com/SupportFiles/Files/Firmware/Update/CMC_FW_V1.34.zip" rel="nofollow noreferrer ugc">v1.34</a></p><p class="blockquote-line"><strong> </strong></p><p class="blockquote-line"><strong>Altos R480 F4 </strong></p><p class="blockquote-line">BMC Firmware - <a href="https://global-download.acer.com/SupportFiles/Files/Firmware/Update/BMC_FW_V1.91.zip" rel="nofollow noreferrer ugc">v1.91</a> (only for Vertiv BMC Firmware) </p><p class="blockquote-line"> </p><p class="blockquote-line"><strong>Altos W2200-W670h F4 </strong></p><p class="blockquote-line">BMC Firmware - <a href="https://global-download.acer.com/SupportFiles/Files/Firmware/Update/BMC_FW_V1.91.zip" rel="nofollow noreferrer ugc">v1.91</a> (only for Vertiv BMC Firmware) </p><p class="blockquote-line">CMC Firmware - <a href="https://global-download.acer.com/SupportFiles/Files/Firmware/Update/CMC_FW_V1.34.zip" rel="nofollow noreferrer ugc">v1.34</a></p><p class="blockquote-line"><strong> </strong></p><p class="blockquote-line"><strong>Altos R369 F4 </strong></p><p class="blockquote-line">BMC Firmware -<strong> </strong><a href="https://global-download.acer.com/SupportFiles/Files/Firmware/Update/BMC_FW_V1.91.zip" rel="nofollow noreferrer ugc">v1.91</a> (only for Vertiv BMC Firmware) </p><p class="blockquote-line"> </p><p class="blockquote-line"><strong>Altos R389 F4 </strong></p><p class="blockquote-line">BMC Firmware -<strong> </strong><a href="https://global-download.acer.com/SupportFiles/Files/Firmware/Update/BMC_FW_V1.91.zip" rel="nofollow noreferrer ugc">v1.91</a> (only for Vertiv BMC Firmware) </p></div></div><p><br></p><h2 data-id="more-information">More information</h2><p>For additional information, please visit <a href="https://eclypsium.com/wp-content/uploads/2019/07/Vulnerable-Firmware-in-the-Supply-Chain.pdf" rel="nofollow noreferrer ugc">https://eclypsium.com/wp-content/uploads/2019/07/Vulnerable-Firmware-in-the-Supply-Chain.pdf</a></p><p><br></p><h2 data-id="disclaimer">Disclaimer</h2><p>THE ABOVE INFORMATION IS PROVIDED "AS IS" IN CONNECTION WITH ACER AND INTEL® PRODUCTS. YOUR USE OF THE INFORMATION OR MATERIALS LINKED FROM THIS PAGE IS AT YOUR OWN RISK. ACER RESERVES THE RIGHT TO CHANGE OR UPDATE THIS PAGE AT ANY TIME.</p> </article> </main>