A write protection lock bit was left unset after boot on an older generation of Lenovo and IBM System x servers, potentially allowing an attacker with administrator access to modify the subset of flash memory containing Intel Server Platform Services (SPS) and the system Flash Descriptors.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
lenovo flex system x240 m4 firmware |
||
lenovo flex system x440 m4 firmware |
||
lenovo system x3750 m4 firmware |
||
ibm bladecenter hs23 firmware |
||
ibm bladecenter hs23e firmware |
||
ibm flex system x220 m4 firmware |
||
ibm flex system x222 m4 firmware |
||
ibm flex system x240 m4 firmware |
||
ibm flex system x280 x6 firmware |
||
ibm flex system x440 m4 firmware |
||
ibm flex system x480 x6 firmware |
||
ibm flex system x880 x6 firmware |
||
ibm idataplex dx360 m4 firmware |
||
ibm idataplex dx360 m4 water cooled firmware |
||
ibm system x3100 m4 firmware |
||
ibm system x3100 m5 firmware |
||
ibm system x3250 m4 firmware |
||
ibm system x3250 m5 firmware |
||
ibm system x3300 m4 firmware |
||
ibm system x3500 m4 firmware |
||
ibm system x3530 m4 firmware |
||
ibm system x3550 m4 firmware |
||
ibm system x3630 m4 firmware |
||
ibm system x3650 m4 firmware |
||
ibm system x3650 m4 bd firmware |
||
ibm system x3650 m4 hd firmware |
||
ibm system x3750 m4 firmware |
||
ibm system x3850 x6 firmware |
||
ibm system x3950 x6 firmware |