Back to Discover

Researchers disclose vulnerabilities in IP KVMs from four manufacturers

March 18, 2026
Ars technica
Researchers disclose vulnerabilities in IP KVMs from four manufacturers

Here's something that might surprise you — low-cost IP KVMs, those tiny devices used by network admins, could be a serious security hole. According to Dan Goodin writing in Technology, these devices, which sell for just $30 to $100 and sit right on the network, give admin-level access at the BIOS or firmware level. That’s powerful — but also risky. When misconfigured or left exposed to the internet, they can be easily hacked or secretly accessed by insiders. What’s more, firmware flaws found by researchers mean these devices are vulnerable to remote takeover, turning them into backdoors into critical networks. Now, here’s where it gets really interesting — these vulnerabilities impact four major manufacturers, and the implications are huge. As Dan Goodin points out, a simple device that’s supposed to make admin jobs easier could actually open the door for serious breaches. So what does this mean for your security? Keep a close eye on these tiny gadgets, especially if they’re exposed or poorly protected. The risks are real — and they’re growing.

Researchers are warning about the risks posed by a low-cost device that can give insiders and hackers unusually broad powers in compromising networks.

The devices, which typically sell for $30 to $100, are known as IP KVMs. Administrators often use them to remotely access machines on networks. The devices, not much bigger than a deck of cards, allow the machines to be accessed at the BIOS/UEFI level, the firmware that runs before the loading of the operating system.

This provides power and convenience to admins, but in the wrong hands, the capabilities can often torpedo what might otherwise be a secure network. Risks are posed when the devices—which are exposed to the Internet—are deployed with weak security configurations or surreptitiously connected to by insiders. Firmware vulnerabilities also leave them open to remote takeover.

Read full article

Comments

Audio Transcript

Researchers are warning about the risks posed by a low-cost device that can give insiders and hackers unusually broad powers in compromising networks.

The devices, which typically sell for $30 to $100, are known as IP KVMs. Administrators often use them to remotely access machines on networks. The devices, not much bigger than a deck of cards, allow the machines to be accessed at the BIOS/UEFI level, the firmware that runs before the loading of the operating system.

This provides power and convenience to admins, but in the wrong hands, the capabilities can often torpedo what might otherwise be a secure network. Risks are posed when the devices—which are exposed to the Internet—are deployed with weak security configurations or surreptitiously connected to by insiders. Firmware vulnerabilities also leave them open to remote takeover.

Read full article

Comments

View original article
0:00/0:00