Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
lenovo thinkagile hx enclosure certified node firmware vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2021-3897
An authentication bypass vulnerability exists in an internal service of the Lenovo Fan Power Controller2 (FPC2) and Lenovo System Management Module (SMM) firmware during an that could allow an unauthenticated malicious user to execute commands on the SMM and FPC2. SMM2 is not aff...
Lenovo Nextscale N1200 Enclosure Firmware
Lenovo Thinkagile Hx Enclosure Certified Node Firmware
Lenovo Thinkagile Vx Enclosure Firmware
Lenovo Thinksystem D2 Enclosure Firmware
Ibm Nextscale Fan Power Controller Firmware
9.8
CVSSv3
CVE-2021-3849
An authentication bypass vulnerability exists in the web interface of the Lenovo Fan Power Controller2 (FPC2) and Lenovo System Management Module (SMM) firmware that could allow an unauthenticated malicious user to execute commands on the SMM and FPC2. SMM2 is not affected.
Lenovo Nextscale N1200 Enclosure Firmware
Lenovo Thinkagile Hx Enclosure Certified Node Firmware
Lenovo Thinkagile Vx Enclosure Firmware
Lenovo Thinksystem D2 Enclosure Firmware
Ibm Nextscale Fan Power Controller Firmware
7.5
CVSSv3
CVE-2023-2992
An unauthenticated denial of service vulnerability exists in the SMM v1, SMM v2, and FPC management web server which can be triggered under crafted conditions. Rebooting SMM or FPC will restore access to the management web server.
Lenovo Nextscale N1200 Enclosure Firmware
Lenovo Thinkagile Cp-cb-10 Firmware
Lenovo Thinkagile Cp-cb-10e Firmware
Lenovo Thinkagile Hx Enclosure Certified Node Firmware
Lenovo Thinkagile Vx Enclosure Firmware
Lenovo Thinksystem D2 Enclosure Firmware
Lenovo Thinksystem Da240 Enclosure Firmware
Lenovo Thinksystem Dw612 Enclosure Firmware
6.5
CVSSv3
CVE-2022-34884
A buffer overflow exists in the Remote Presence subsystem which can potentially allow valid, authenticated users to cause a recoverable subsystem denial of service.
Lenovo Thinkagile Vx3331 Firmware
Lenovo Thinkagile Hx Enclosure Certified Node Firmware
Lenovo Thinkagile Hx1021 Firmware
Lenovo Thinkagile Hx1320 Firmware
Lenovo Thinkagile Hx1321 Firmware
Lenovo Thinkagile Hx1520-r Firmware
Lenovo Thinkagile Hx1521-r Firmware
Lenovo Thinkagile Hx2320-e Firmware
Lenovo Thinkagile Hx2321 Firmware
Lenovo Thinkagile Hx2720-e Firmware
Lenovo Thinkagile Hx3320 Firmware
Lenovo Thinkagile Hx3321 Firmware
Lenovo Thinkagile Hx3375 Firmware
Lenovo Thinkagile Hx3376 Firmware
Lenovo Thinkagile Hx3520-g Firmware
Lenovo Thinkagile Hx3521-g Firmware
Lenovo Thinkagile Hx3720 Firmware
Lenovo Thinkagile Hx3721 Firmware
Lenovo Thinkagile Hx5520 Firmware
Lenovo Thinkagile Hx5520-c Firmware
Lenovo Thinkagile Hx5521 Firmware
Lenovo Thinkagile Hx5521-c Firmware
6.3
CVSSv3
CVE-2023-2993
A valid, authenticated user with limited privileges may be able to use specifically crafted web management server API calls to execute a limited number of commands on SMM v1, SMM v2, and FPC that the user does not normally have sufficient privileges to execute.
Lenovo Nextscale N1200 Enclosure Firmware
Lenovo Thinkagile Cp-cb-10 Firmware
Lenovo Thinkagile Cp-cb-10e Firmware
Lenovo Thinkagile Hx Enclosure Certified Node Firmware
Lenovo Thinkagile Vx Enclosure Firmware
Lenovo Thinksystem D2 Enclosure Firmware
Lenovo Thinksystem Da240 Enclosure Firmware
Lenovo Thinksystem Dw612 Enclosure Firmware
4.3
CVSSv3
CVE-2022-34888
The Remote Mount feature can potentially be abused by valid, authenticated users to make connections to internal services that may not normally be accessible to users. Internal service access controls, as applicable, remain in effect.
Lenovo Thinkagile Vx3331 Firmware
Lenovo Thinkagile Hx Enclosure Certified Node Firmware
Lenovo Thinkagile Hx1021 Firmware
Lenovo Thinkagile Hx1320 Firmware
Lenovo Thinkagile Hx1321 Firmware
Lenovo Thinkagile Hx1520-r Firmware
Lenovo Thinkagile Hx1521-r Firmware
Lenovo Thinkagile Hx2320-e Firmware
Lenovo Thinkagile Hx2321 Firmware
Lenovo Thinkagile Hx2720-e Firmware
Lenovo Thinkagile Hx3320 Firmware
Lenovo Thinkagile Hx3321 Firmware
Lenovo Thinkagile Hx3375 Firmware
Lenovo Thinkagile Hx3376 Firmware
Lenovo Thinkagile Hx3520-g Firmware
Lenovo Thinkagile Hx3521-g Firmware
Lenovo Thinkagile Hx3720 Firmware
Lenovo Thinkagile Hx3721 Firmware
Lenovo Thinkagile Hx5520 Firmware
Lenovo Thinkagile Hx5520-c Firmware
Lenovo Thinkagile Hx5521 Firmware
Lenovo Thinkagile Hx5521-c Firmware
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4541
CVE-2024-3080
CVE-2024-4787
log injection
CVE-2024-5967
inject
CVE-2024-30078
CVE-2024-5899
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started