{"id":943,"date":"2022-12-07T13:49:54","date_gmt":"2022-12-07T18:49:54","guid":{"rendered":"https:\/\/ami2025dev.wpenginepowered.com\/response-to-megarac-baseboard-management-controller-vulnerabilities\/"},"modified":"2025-12-10T17:15:10","modified_gmt":"2025-12-10T17:15:10","slug":"response-to-megarac-baseboard-management-controller-vulnerabilities","status":"publish","type":"project","link":"https:\/\/www.ami.com\/resource\/response-to-megarac-baseboard-management-controller-vulnerabilities\/","title":{"rendered":"Response to MegaRAC Baseboard Management Controller Vulnerabilities"},"content":{"rendered":"<p>At AMI, we take vulnerabilities seriously and continuously monitor and respond to the changing security landscape. When these MegaRAC Baseboard Management Controller vulnerabilities were identified, our Product Security Incident Response Team (PSIRT) swung into action, allowing AMI to address the vulnerabilities effectively and efficiently. In collaboration with CISA, CERT, and Eclypsium, we worked on the discovery and remediation of these issues. <span>Eclypsium commended AMI\u2019s quick work towards remediation:<\/span><\/p>\n<p><em>\u201cWe would like to highlight that our experience working with AMI PSIRT was exceptional. They were highly professional throughout the disclosure process, reproduced our report quickly, and clearly communicated their remediation process. This engagement exemplified how a mature vulnerability response program should operate, and we look forward to future collaboration with AMI to protect customers.\u201d &#8212;<\/em>Nate Warfield from Eclypsium<em><\/em><\/p>\n<p>As part of our continuous\u00a0process and key relationships with CISA and global research firms, we took proactive steps to remediate the identified vulnerabilities and promptly notified all affected customers. We have been in direct contact with our customers since the beginning of this process, and all customers were provided a patch to resolve these vulnerabilities. We are committed to keeping our customers informed and recommend they update their firmware with the latest updates.<\/p>\n<p>At AMI, we will continue to work with CISA and research firms to monitor the security landscape,\u00a0ensuring vulnerabilities are quickly identified, addressed, and reported. We are committed to maintaining the highest security standards for all our products to\u00a0best\u00a0protect our customers from potential risks.<\/p>\n<p>Sam Cure<br \/>CISO<\/p>\n","protected":false},"excerpt":{"rendered":"<p>At AMI, we take vulnerabilities seriously and continuously monitor and respond to the changing security landscape. When these MegaRAC Baseboard Management Controller vulnerabilities were identified, our Product Security Incident Response Team (PSIRT) swung into action, allowing AMI to address the vulnerabilities effectively and efficiently. In collaboration with CISA, CERT, and Eclypsium, we worked on the [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","template":"","meta":{"_et_pb_use_builder":"","_et_pb_old_content":"","_et_gb_content_width":"","content-type":"","footnotes":""},"project_category":[1499],"project_tag":[1656,1657,1647,1562,1526,1639],"class_list":["post-943","project","type-project","status-publish","hentry","project_category-blog","project_tag-baseboard-management-controller","project_tag-cert","project_tag-cisa","project_tag-eclypsium","project_tag-megarac","project_tag-security","topics-megarac"],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v27.1 (Yoast SEO v27.1.1) - https:\/\/yoast.com\/product\/yoast-seo-premium-wordpress\/ -->\n<title>Response to MegaRAC Baseboard Management Controller Vulnerabilities - AMI<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.ami.com\/resource\/response-to-megarac-baseboard-management-controller-vulnerabilities\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Response to MegaRAC Baseboard Management Controller Vulnerabilities\" \/>\n<meta property=\"og:description\" content=\"At AMI, we take vulnerabilities seriously and continuously monitor and respond to the changing security landscape. When these MegaRAC Baseboard Management Controller vulnerabilities were identified, our Product Security Incident Response Team (PSIRT) swung into action, allowing AMI to address the vulnerabilities effectively and efficiently. In collaboration with CISA, CERT, and Eclypsium, we worked on the [&hellip;]\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.ami.com\/resource\/response-to-megarac-baseboard-management-controller-vulnerabilities\/\" \/>\n<meta property=\"og:site_name\" content=\"AMI\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/TheWorldRunsonAMI#\" \/>\n<meta property=\"article:modified_time\" content=\"2025-12-10T17:15:10+00:00\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:site\" content=\"@AMI_PR\" \/>\n<meta name=\"twitter:label1\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data1\" content=\"1 minute\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.ami.com\/resource\/response-to-megarac-baseboard-management-controller-vulnerabilities\/\",\"url\":\"https:\/\/www.ami.com\/resource\/response-to-megarac-baseboard-management-controller-vulnerabilities\/\",\"name\":\"Response to MegaRAC Baseboard Management Controller Vulnerabilities - AMI\",\"isPartOf\":{\"@id\":\"https:\/\/www.ami.com\/#website\"},\"datePublished\":\"2022-12-07T18:49:54+00:00\",\"dateModified\":\"2025-12-10T17:15:10+00:00\",\"breadcrumb\":{\"@id\":\"https:\/\/www.ami.com\/resource\/response-to-megarac-baseboard-management-controller-vulnerabilities\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.ami.com\/resource\/response-to-megarac-baseboard-management-controller-vulnerabilities\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.ami.com\/resource\/response-to-megarac-baseboard-management-controller-vulnerabilities\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.ami.com\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Resources\",\"item\":\"https:\/\/www.ami.com\/project\/\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"Response to MegaRAC Baseboard Management Controller Vulnerabilities\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.ami.com\/#website\",\"url\":\"https:\/\/www.ami.com\/\",\"name\":\"AMI\",\"description\":\"Trusted Leader in UEFI, BMC &amp; Open-Source Firmware\",\"publisher\":{\"@id\":\"https:\/\/www.ami.com\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.ami.com\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.ami.com\/#organization\",\"name\":\"AMI\",\"url\":\"https:\/\/www.ami.com\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.ami.com\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.ami.com\/wp-content\/uploads\/2025\/09\/cropped-AMI-Favicon.png\",\"contentUrl\":\"https:\/\/www.ami.com\/wp-content\/uploads\/2025\/09\/cropped-AMI-Favicon.png\",\"width\":512,\"height\":512,\"caption\":\"AMI\"},\"image\":{\"@id\":\"https:\/\/www.ami.com\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/www.facebook.com\/TheWorldRunsonAMI#\",\"https:\/\/x.com\/AMI_PR\",\"https:\/\/www.linkedin.com\/company\/ami\",\"https:\/\/www.youtube.com\/c\/AMI_PR\"]}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Response to MegaRAC Baseboard Management Controller Vulnerabilities - AMI","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.ami.com\/resource\/response-to-megarac-baseboard-management-controller-vulnerabilities\/","og_locale":"en_US","og_type":"article","og_title":"Response to MegaRAC Baseboard Management Controller Vulnerabilities","og_description":"At AMI, we take vulnerabilities seriously and continuously monitor and respond to the changing security landscape. When these MegaRAC Baseboard Management Controller vulnerabilities were identified, our Product Security Incident Response Team (PSIRT) swung into action, allowing AMI to address the vulnerabilities effectively and efficiently. In collaboration with CISA, CERT, and Eclypsium, we worked on the [&hellip;]","og_url":"https:\/\/www.ami.com\/resource\/response-to-megarac-baseboard-management-controller-vulnerabilities\/","og_site_name":"AMI","article_publisher":"https:\/\/www.facebook.com\/TheWorldRunsonAMI#","article_modified_time":"2025-12-10T17:15:10+00:00","twitter_card":"summary_large_image","twitter_site":"@AMI_PR","twitter_misc":{"Est. reading time":"1 minute"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/www.ami.com\/resource\/response-to-megarac-baseboard-management-controller-vulnerabilities\/","url":"https:\/\/www.ami.com\/resource\/response-to-megarac-baseboard-management-controller-vulnerabilities\/","name":"Response to MegaRAC Baseboard Management Controller Vulnerabilities - AMI","isPartOf":{"@id":"https:\/\/www.ami.com\/#website"},"datePublished":"2022-12-07T18:49:54+00:00","dateModified":"2025-12-10T17:15:10+00:00","breadcrumb":{"@id":"https:\/\/www.ami.com\/resource\/response-to-megarac-baseboard-management-controller-vulnerabilities\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.ami.com\/resource\/response-to-megarac-baseboard-management-controller-vulnerabilities\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.ami.com\/resource\/response-to-megarac-baseboard-management-controller-vulnerabilities\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.ami.com\/"},{"@type":"ListItem","position":2,"name":"Resources","item":"https:\/\/www.ami.com\/project\/"},{"@type":"ListItem","position":3,"name":"Response to MegaRAC Baseboard Management Controller Vulnerabilities"}]},{"@type":"WebSite","@id":"https:\/\/www.ami.com\/#website","url":"https:\/\/www.ami.com\/","name":"AMI","description":"Trusted Leader in UEFI, BMC &amp; Open-Source Firmware","publisher":{"@id":"https:\/\/www.ami.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.ami.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.ami.com\/#organization","name":"AMI","url":"https:\/\/www.ami.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.ami.com\/#\/schema\/logo\/image\/","url":"https:\/\/www.ami.com\/wp-content\/uploads\/2025\/09\/cropped-AMI-Favicon.png","contentUrl":"https:\/\/www.ami.com\/wp-content\/uploads\/2025\/09\/cropped-AMI-Favicon.png","width":512,"height":512,"caption":"AMI"},"image":{"@id":"https:\/\/www.ami.com\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/TheWorldRunsonAMI#","https:\/\/x.com\/AMI_PR","https:\/\/www.linkedin.com\/company\/ami","https:\/\/www.youtube.com\/c\/AMI_PR"]}]}},"_links":{"self":[{"href":"https:\/\/www.ami.com\/wp-json\/wp\/v2\/project\/943","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.ami.com\/wp-json\/wp\/v2\/project"}],"about":[{"href":"https:\/\/www.ami.com\/wp-json\/wp\/v2\/types\/project"}],"author":[{"embeddable":true,"href":"https:\/\/www.ami.com\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.ami.com\/wp-json\/wp\/v2\/comments?post=943"}],"version-history":[{"count":0,"href":"https:\/\/www.ami.com\/wp-json\/wp\/v2\/project\/943\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.ami.com\/wp-json\/wp\/v2\/media?parent=943"}],"wp:term":[{"taxonomy":"project_category","embeddable":true,"href":"https:\/\/www.ami.com\/wp-json\/wp\/v2\/project_category?post=943"},{"taxonomy":"project_tag","embeddable":true,"href":"https:\/\/www.ami.com\/wp-json\/wp\/v2\/project_tag?post=943"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}