An authentication bypass vulnerability exists in the web interface of the Lenovo Fan Power Controller2 (FPC2) and Lenovo System Management Module (SMM) firmware that could allow an unauthenticated malicious user to execute commands on the SMM and FPC2. SMM2 is not affected.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
lenovo nextscale_n1200_enclosure_firmware |
||
lenovo thinkagile_hx_enclosure_certified_node_firmware |
||
lenovo thinkagile_vx_enclosure_firmware |
||
lenovo thinksystem_d2_enclosure_firmware |
||
ibm nextscale_fan_power_controller_firmware |