Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
lenovo thinkserver firmware vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv3
CVE-2018-9086
In some Lenovo ThinkServer-branded servers, a command injection vulnerability exists in the BMC firmware download command. This allows a privileged user to download and execute arbitrary code inside the BMC. This can only be exploited by authorized privileged users.
Lenovo Thinkserver Rd340 Firmware
Lenovo Thinkserver Rd440 Firmware
Lenovo Thinkserver Rd640 Firmware
Lenovo Thinkserver Td340 Firmware
NA
CVE-2015-3323
The ThinkServer System Manager (TSM) Baseboard Management Controller before firmware 1.27.73476 for ThinkServer RD350, RD450, RD550, RD650, and TD350 allows remote malicious users to cause a denial of service (web interface crash) via a malformed HTTP request during authenticatio...
Lenovo Thinkserver System Manager Baseboard Management Controller Firmware
NA
CVE-2015-3324
The ThinkServer System Manager (TSM) Baseboard Management Controller before firmware 1.27.73476 for ThinkServer RD350, RD450, RD550, RD650, and TD350 does not validate server certificates during an "encrypted remote KVM session," which allows man-in-the-middle malicious...
Lenovo Thinkserver System Manager Baseboard Management Controller Firmware 118.71532
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started