Critical Vulnerability Discovered in AMI MegaRAC BMC Software

A critical vulnerability has been discovered in the MegaRAC Baseboard Management Controller (BMC) software from AMI, allowing an attacker to bypass authentication and perform post-exploitation actions. This vulnerability, listed under the number CVE-2024-54085, has a CVSS v4 score of 10.0, indicating maximum severity. A local or remote attacker can exploit this flaw by accessing the BMC, which could lead to a complete takeover of the server and potentially render it unusable.