A Historic First: BMC Vulnerability CVE-2024-054085 Joins CISA's Most Critical List

Actively exploited vulnerability gives extraordinary control over server fleets – Monkey Viral

On Wednesday, CISA added CVE-2024-54085 to its list of vulnerabilities known to be exploited in the wild. The notice provided no further details. In an email on Thursday, Eclypsium researchers said the scope of the exploits has the potential to be broad. That scope includes: Attackers could chain multiple BMC exploits to implant malicious code […]

A Historic First: BMC Vulnerability CVE-2024-054085 Joins CISA's Most Critical List

In June 2025, for the first time, CISA added a Baseboard Management Controller vulnerability to its Known Exploited Vulnerabilities catalog. Introduction to Malware Binary Triage (IMBT) Course Looking to level up your …

BMC Vulnerability CVE-2024-05485 Added to CISA KEV

In June 2025, for the first time, CISA added a Baseboard Management Controller vulnerability to its Known Exploited Vulnerabilities catalog. While BMC vulnerabilities have been reported for years, the inclusion of CVE-2024-54085 marks the first time that CISA has publicly acknowledged that these critical, foundational components are being exploited in the wild. The vulnerability, disclosed by Eclypsium in March 2025, is previously unknown and re…