A recently discovered security vulnerability in remote-access firmware on Dell servers can give hackers full access to the same systems data center managers use, enabling them to do things like turn off a server’s cooling fans or shut the machine down completely.
Security researchers who found the flaw have already identified hundreds of servers accessible in this way through the internet. The flaw is a “path transversal vulnerability.” It is a common type of vulnerability. A similar one was found recently in Zoom’s infrastructure, for example.
