Supplier AMI has published a PDF list of some critical security vulnerabilities in the MegaRAC SPX firmware.

Lenovo is releasing the first BIOS updates that seal these security leaks. Regardless of this, Dell also distributes updated BIOS versions - but these close other gaps in third-party software.

The vulnerability list published by AMI includes eight vulnerabilities. The manufacturer classifies two of these as critical risks with a CVSS value of 9.6, while the six others represent a high level of threat. The most serious gaps allow attackers from adjacent networks to trigger a stack-based buffer overflow in the BMC, which apparently allows the insertion of malicious code enabled (CVE-2023-3043+CVE-2023-37293, both CVSS 9.6, risk critical).

BIOS vulnerabilities

Lenovo has published updated BIOS versions for machines in the Hyperscale and Thinksystem series that explicitly close the AMI MegaRAC SPX gaps - however, the critical vulnerability CVE-2023-3043 is missing from the list. It currently remains unclear whether the Lenovo devices are not affected by this or whether the error correction has not yet made it into the updated firmware. The following BIOS versions no longer contain the security holes: ThinkSystem HR610X V15.41, HR630X/HR650X V11.54, HR630X_V2 V1.26, HG680X SR590V2 V6.41.00, SR660V2 V6.93.00, WR5220G3 V6.47.00 and SR635/65 5 AMBT50N. They are linked in Lenovo's according security notice.

DELL recently released BIOS updates that fix security gaps in the included OpenSSL library. The following BIOS updates are available: Alienware m15 R6 V1.27.0, Dell G15 5511 V1.26.0 and XPS 8960 V2.3.0 or newer versions. The links lead to the driver and download pages for the respective systems.

Outdated BIOS versions can pose a security risk and make it easier or easier for attackers to gain access to networks or computers. Therefore, as with other software updates, available BIOS updates should be installed quickly.