An authenticated XCC user with Read-Only permission can change a different user’s password through a crafted API command. This affects ThinkSystem v2 and v3 servers with XCC; ThinkSystem v1 servers are not affected.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
lenovo thinkagile hx5530 firmware - |
||
lenovo thinkagile hx7530 firmware - |
||
lenovo thinkagile vx3331 firmware - |
||
lenovo thinkagile hx1331 firmware - |
||
lenovo thinkagile hx2330 firmware - |
||
lenovo thinkagile hx2331 firmware - |
||
lenovo thinkagile hx3330 firmware - |
||
lenovo thinkagile hx3331 firmware - |
||
lenovo thinkagile hx3375 firmware - |
||
lenovo thinkagile hx3376 firmware - |
||
lenovo thinkagile hx5531 firmware - |
||
lenovo thinkagile hx7531 firmware - |
||
lenovo thinkagile mx3330-f all-flash firmware - |
||
lenovo thinkagile mx3330-h hybrid firmware - |
||
lenovo thinkagile mx3331-f all-flash firmware - |
||
lenovo thinkagile mx3331-h hybrid firmware - |
||
lenovo thinkagile mx3530 f all flash firmware - |
||
lenovo thinkagile mx3530-h hybrid firmware - |
||
lenovo thinkagile mx3531 h hybrid firmware - |
||
lenovo thinkagile mx3531-f all-flash firmware - |
||
lenovo thinkagile vx2330 firmware - |
||
lenovo thinkagile vx3330 firmware - |
||
lenovo thinkagile vx3530-g firmware - |
||
lenovo thinkagile vx5530 firmware - |
||
lenovo thinkagile vx7330 firmware - |
||
lenovo thinkagile vx7530 firmware - |
||
lenovo thinkagile vx7531 firmware - |
||
lenovo thinksystem sd630 v2 firmware - |
||
lenovo thinksystem sd650 v2 firmware - |
||
lenovo thinksystem sd650 v3 firmware - |
||
lenovo thinksystem sd650-n v2 firmware - |
||
lenovo thinksystem sd665 v3 firmware - |
||
lenovo thinksystem sn550 v2 firmware - |
||
lenovo thinksystem sr250 firmware - |
||
lenovo thinksystem sr258 v2 firmware - |
||
lenovo thinksystem sr630 v2 firmware - |
||
lenovo thinksystem sr630 v3 firmware - |
||
lenovo thinksystem sr635 v3 firmware - |
||
lenovo thinksystem sr645 firmware - |
||
lenovo thinksystem sr645 v3 firmware - |
||
lenovo thinksystem sr650 v2 firmware - |
||
lenovo thinksystem sr650 v3 firmware - |
||
lenovo thinksystem sr655 v3 firmware - |
||
lenovo thinksystem sr665 firmware - |
||
lenovo thinksystem sr665 v3 firmware - |
||
lenovo thinksystem sr670 firmware - |
||
lenovo thinksystem sr670 v2 firmware - |
||
lenovo thinksystem sr675 v3 firmware - |
||
lenovo thinksystem sr850 v2 firmware - |
||
lenovo thinksystem sr850 v3 firmware - |
||
lenovo thinksystem sr860 v2 firmware - |
||
lenovo thinksystem sr860 v3 firmware - |
||
lenovo thinksystem st250 v2 firmware - |
||
lenovo thinksystem st258 v2 firmware - |
||
lenovo thinksystem st650 v2 firmware - |
||
lenovo thinksystem st650 v3 firmware - |
||
lenovo thinksystem st658 v2 firmware - |
||
lenovo thinksystem st658 v3 firmware - |
Vulmon