Lenovo ThinkServer RD350, RD450, RD550, RD650, and TD350 servers prior to 1.26.0 use weak encryption to store (1) user and (2) administrator BIOS passwords, which allows malicious users to decrypt the passwords via unspecified vectors.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
lenovo thinkserver_rd650_firmware |
||
lenovo thinkserver_rd650 |
||
lenovo thinkserver_td350_firmware |
||
lenovo thinkserver_td350 |
||
lenovo thinkserver_rd350_firmware |
||
lenovo thinkserver_rd350 |
||
lenovo thinkserver_rd550_firmware |
||
lenovo thinkserver_rd550 |
||
lenovo thinkserver_rd450_firmware |
||
lenovo thinkserver_rd450 |