The BMC in OpenBMC stands for 'Burglarize My Computer' – thanks to irritating security flaw

Pantsdown vulnerability affects various BMC stacks as well as OpenBMC on systems using two particular Aspeed chips

An oversight in the firmware for various baseband management controllers (BMCs) can be exploited by miscreants to bury spyware deep inside a server, potentially poisoning it for the next owner."