Vulnerabilites related to Lenovo - XClarity Controller
cve-2023-25495
Vulnerability from cvelistv5
Vendor | Product | Version | |
---|---|---|---|
▼ | Lenovo | XClarity Controller |
Version: Refer to Mitigation strategy section in LEN-99936 |
|
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T11:25:18.487Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://support.lenovo.com/us/en/product_security/LEN-99936", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { defaultStatus: "unaffected", product: "XClarity Controller", vendor: "Lenovo", versions: [ { status: "affected", version: "Refer to Mitigation strategy section in LEN-99936", }, ], }, ], descriptions: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "A valid, authenticated administrative user can query a web interface API to reveal the configured LDAP client password used by XCC to authenticate to an external LDAP server in certain configurations. There is no exposure where no LDAP client password is configured", }, ], value: "A valid, authenticated administrative user can query a web interface API to reveal the configured LDAP client password used by XCC to authenticate to an external LDAP server in certain configurations. There is no exposure where no LDAP client password is configured", }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 4.9, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "HIGH", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, format: "CVSS", scenarios: [ { lang: "en", value: "GENERAL", }, ], }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-522", description: "CWE-522 Insufficiently Protected Credentials", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2023-04-28T21:26:12.202Z", orgId: "da227ddf-6e25-4b41-b023-0f976dcaca4b", shortName: "lenovo", }, references: [ { url: "https://support.lenovo.com/us/en/product_security/LEN-99936", }, ], solutions: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "Customers should update to the version (or later) of Lenovo XClarity Controller (XCC) identified in the related Lenovo Product Security Advisory: <a target=\"_blank\" rel=\"nofollow\" href=\"https://support.lenovo.com/us/en/product_security/LEN-99936\">https://support.lenovo.com/us/en/product_security/LEN-99936</a>", }, ], value: "Customers should update to the version (or later) of Lenovo XClarity Controller (XCC) identified in the related Lenovo Product Security Advisory: https://support.lenovo.com/us/en/product_security/LEN-99936 https://support.lenovo.com/us/en/product_security/LEN-99936 ", }, ], source: { discovery: "UNKNOWN", }, x_generator: { engine: "Vulnogram 0.1.0-dev", }, }, }, cveMetadata: { assignerOrgId: "da227ddf-6e25-4b41-b023-0f976dcaca4b", assignerShortName: "lenovo", cveId: "CVE-2023-25495", datePublished: "2023-04-28T21:26:12.202Z", dateReserved: "2023-02-06T15:09:03.709Z", dateUpdated: "2024-08-02T11:25:18.487Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-29056
Vulnerability from cvelistv5
Vendor | Product | Version | |
---|---|---|---|
▼ | Lenovo | XClarity Controller |
Version: Refer to Mitigation strategy section in LEN-118321 |
|
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T14:00:14.660Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://support.lenovo.com/us/en/product_security/LEN-118321", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { defaultStatus: "unaffected", product: "XClarity Controller", vendor: "Lenovo", versions: [ { status: "affected", version: "Refer to Mitigation strategy section in LEN-118321", }, ], }, ], descriptions: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "A valid LDAP user, under specific conditions, will default to read-only permissions when authenticating into XCC. To be vulnerable, XCC must be configured to use an LDAP server for Authentication/Authorization and have the login permission attribute not defined.", }, ], value: "A valid LDAP user, under specific conditions, will default to read-only permissions when authenticating into XCC. To be vulnerable, XCC must be configured to use an LDAP server for Authentication/Authorization and have the login permission attribute not defined.", }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", version: "3.1", }, format: "CVSS", scenarios: [ { lang: "en", value: "GENERAL", }, ], }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-269", description: "CWE-269 Improper Privilege Management", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2023-04-28T21:07:40.439Z", orgId: "da227ddf-6e25-4b41-b023-0f976dcaca4b", shortName: "lenovo", }, references: [ { url: "https://support.lenovo.com/us/en/product_security/LEN-118321", }, ], solutions: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "Customers should update to the version (or later) of <span style=\"background-color: rgb(255, 255, 255);\">Lenovo XClarity Controller (XCC) identified in the related Lenovo Product Security Advisory: <br><span style=\"background-color: rgb(255, 255, 255);\"><a target=\"_blank\" rel=\"nofollow\" href=\"https://support.lenovo.com/us/en/product_security/LEN-118321\">https://support.lenovo.com/us/en/product_security/LEN-118321</a></span></span>", }, ], value: "Customers should update to the version (or later) of Lenovo XClarity Controller (XCC) identified in the related Lenovo Product Security Advisory: \n https://support.lenovo.com/us/en/product_security/LEN-118321 https://support.lenovo.com/us/en/product_security/LEN-118321 ", }, ], source: { discovery: "UNKNOWN", }, x_generator: { engine: "Vulnogram 0.1.0-dev", }, }, }, cveMetadata: { assignerOrgId: "da227ddf-6e25-4b41-b023-0f976dcaca4b", assignerShortName: "lenovo", cveId: "CVE-2023-29056", datePublished: "2023-04-28T21:07:40.439Z", dateReserved: "2023-03-30T12:46:45.646Z", dateUpdated: "2024-08-02T14:00:14.660Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2024-38512
Vulnerability from cvelistv5
Vendor | Product | Version | |
---|---|---|---|
▼ | Lenovo | XClarity Controller |
Version: various |
|
{ containers: { adp: [ { affected: [ { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx5530_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx5530_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx7530_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx7530_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx3331_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx3331_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx_enclosure_certified_node_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx_enclosure_certified_node_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx1021_edg_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx1021_edg_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx1320_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx1320_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx1331_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx1331_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx1321_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx1321_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx1520-r_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx1520-r_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx1521-r_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx1521-r_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx2320-e_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx2320-e_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx2321_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx2321_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx2330_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx2330_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx2331_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx2331_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx2720-e_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx2720-e_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx3320_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx3320_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx3321_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx3321_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx3330_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx3330_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:h:lenovo:thinkagile_hx3331:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx3331", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx3375_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx3375_firmware", vendor: "lenovo", versions: [ { lessThan: "5.61", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx3376_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx3376_firmware", vendor: "lenovo", versions: [ { lessThan: "5.61", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx3520-g_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx3520-g_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx3521-g_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx3521-g_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx3720_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx3720_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx3721_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx3721_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx5520-c_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx5520-c_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx5521-c_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx5521-c_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx5531_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx5531_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx7520_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx7520_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx7521_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx7521_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx7521_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx7521_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx7530_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx7530_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx7531_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx7531_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx7820_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx7820_firmware", vendor: "lenovo", versions: [ { lessThan: "3.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx7821_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx7821_firmware", vendor: "lenovo", versions: [ { lessThan: "3.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_mx1020_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_mx1020_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_mx3330-f_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_mx3330-f_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_mx3330-h_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_mx3330-h_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_mx3331-f_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_mx3331-f_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_mx3331-h_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_mx3331-h_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_mx3530_f_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_mx3530_f_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_mx3530-h_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_mx3530-h_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_mx3531-f_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_mx3531-f_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx1320_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx1320_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx2320_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx2320_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx2330_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx2330_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx3320_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx3320_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx3330_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx3330_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx3520-g_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx3520-g_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx3530-g_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx3530-g_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx3720_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx3720_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx5520_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx5520_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx5530_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx5530_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx7320_n_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx7320_n_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx7330_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx7330_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx7520_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx7520_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx7520_n_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx7520_n_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx7530_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx7530_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx7531_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx7531_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx7820_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx7820_firmware", vendor: "lenovo", versions: [ { lessThan: "3.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkstation_p920_workstation_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkstation_p920_workstation_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_st250_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_st250_firmware", vendor: "lenovo", versions: [ { lessThan: "1.12", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sd530_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sd530_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sd630_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sd630_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sd650_dual_node_tray_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sd650_dual_node_tray_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, { lessThan: "6.36", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sd650-n_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sd650-n_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sd650_v3_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sd650_v3_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sd665_v3_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sd665_v3_firmware", vendor: "lenovo", versions: [ { lessThan: "5.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_se350_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_se350_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sn550_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sn550_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, { lessThan: "6.36", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sn550_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sn550_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sn850_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sn850_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, { lessThan: "6.36", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr150_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr150_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr158_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr158_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr250_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr250_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr250_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr250_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr258_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr258_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr258_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr258_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr530_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr530_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr550_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr550_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr570_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr570_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr590_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr590_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr630_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr630_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr630_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr630_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr630_v3_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr630_v3_firmware", vendor: "lenovo", versions: [ { lessThan: "4.51", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr635_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr635_firmware", vendor: "lenovo", versions: [ { lessThan: "2.81", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr645_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr645_firmware", vendor: "lenovo", versions: [ { lessThan: "5.61", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr645_v3_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr645_v3_firmware", vendor: "lenovo", versions: [ { lessThan: "2.81", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr650_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr650_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr650_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr650_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr655_v3_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr655_v3_firmware", vendor: "lenovo", versions: [ { lessThan: "2.81", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr665_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr665_firmware", vendor: "lenovo", versions: [ { lessThan: "5.61", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr665_v3_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr665_v3_firmware", vendor: "lenovo", versions: [ { lessThan: "5.61", status: "affected", version: "0", versionType: "custom", }, { lessThan: "2.81", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr670_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr670_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr670_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr670_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr670_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr670_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "5.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr675_v3_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr675_v3_firmware", vendor: "lenovo", versions: [ { lessThan: "5.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr850_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr850_firmware", vendor: "lenovo", versions: [ { lessThan: "6.36", status: "affected", version: "0", versionType: "custom", }, { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr850_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr850_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr850_v3_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr850_v3_firmware", vendor: "lenovo", versions: [ { lessThan: "1.20", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr850p_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr850p_firmware", vendor: "lenovo", versions: [ { lessThan: "6.36", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr860_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr860_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr860_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr860_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr860_v3_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr860_v3_firmware", vendor: "lenovo", versions: [ { lessThan: "1.20", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr950_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr950_firmware", vendor: "lenovo", versions: [ { lessThan: "3.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_st250_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_st250_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_st250_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_st250_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_st258_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_st258_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_st258_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_st258_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_st550_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_st550_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_st650_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_st650_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_st650_v3_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_st650_v3_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_st658_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_st658_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_st658_v3_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_st658_v3_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, ], metrics: [ { other: { content: { id: "CVE-2024-38512", options: [ { Exploitation: "none", }, { Automatable: "no", }, { "Technical Impact": "total", }, ], role: "CISA Coordinator", timestamp: "2024-07-26T20:39:25.921304Z", version: "2.0.3", }, type: "ssvc", }, }, ], providerMetadata: { dateUpdated: "2024-07-27T17:16:58.109Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, { providerMetadata: { dateUpdated: "2024-08-02T04:12:25.173Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://support.lenovo.com/us/en/product_security/LEN-156781", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { defaultStatus: "unaffected", product: "XClarity Controller", vendor: "Lenovo", versions: [ { status: "affected", version: "various", }, ], }, ], descriptions: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "<span style=\"background-color: rgb(255, 255, 255);\">A privilege escalation vulnerability was discovered in XCC that could allow an authenticated XCC user with elevated privileges to perform command injection via specially crafted IPMI commands.</span>", }, ], value: "A privilege escalation vulnerability was discovered in XCC that could allow an authenticated XCC user with elevated privileges to perform command injection via specially crafted IPMI commands.", }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.2, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "HIGH", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, format: "CVSS", scenarios: [ { lang: "en", value: "GENERAL", }, ], }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-78", description: "CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-07-26T19:45:31.829Z", orgId: "da227ddf-6e25-4b41-b023-0f976dcaca4b", shortName: "lenovo", }, references: [ { url: "https://support.lenovo.com/us/en/product_security/LEN-156781", }, ], solutions: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "Update to the version (or newer) indicated for your model in the Product Impact section in the advisory: <a target=\"_blank\" rel=\"nofollow\" href=\"https://support.lenovo.com/us/en/product_security/LEN-156781\">https://support.lenovo.com/us/en/product_security/LEN-156781</a>\n\n<br>", }, ], value: "Update to the version (or newer) indicated for your model in the Product Impact section in the advisory: https://support.lenovo.com/us/en/product_security/LEN-156781", }, ], source: { discovery: "UNKNOWN", }, x_generator: { engine: "Vulnogram 0.2.0", }, }, }, cveMetadata: { assignerOrgId: "da227ddf-6e25-4b41-b023-0f976dcaca4b", assignerShortName: "lenovo", cveId: "CVE-2024-38512", datePublished: "2024-07-26T19:45:31.829Z", dateReserved: "2024-06-18T14:42:40.471Z", dateUpdated: "2024-08-02T04:12:25.173Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-29058
Vulnerability from cvelistv5
Vendor | Product | Version | |
---|---|---|---|
▼ | Lenovo | XClarity Controller |
Version: Refer to Mitigation strategy section in LEN-118321 |
|
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T14:00:15.529Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://support.lenovo.com/us/en/product_security/LEN-118321", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { defaultStatus: "unaffected", product: "XClarity Controller", vendor: "Lenovo", versions: [ { status: "affected", version: "Refer to Mitigation strategy section in LEN-118321", }, ], }, ], descriptions: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "A valid, authenticated XCC user with read-only permissions can modify custom user roles on other user accounts and the user trespass message through the XCC CLI. There is no exposure if SSH is disabled or if there are no users assigned optional read-only permissions.", }, ], value: "A valid, authenticated XCC user with read-only permissions can modify custom user roles on other user accounts and the user trespass message through the XCC CLI. There is no exposure if SSH is disabled or if there are no users assigned optional read-only permissions.", }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 6.4, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "HIGH", privilegesRequired: "HIGH", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:L/I:H/A:H", version: "3.1", }, format: "CVSS", scenarios: [ { lang: "en", value: "GENERAL", }, ], }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-276", description: "CWE-276 Incorrect Default Permissions", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2023-04-28T20:47:46.172Z", orgId: "da227ddf-6e25-4b41-b023-0f976dcaca4b", shortName: "lenovo", }, references: [ { url: "https://support.lenovo.com/us/en/product_security/LEN-118321", }, ], solutions: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "Customers should update to the version (or later) of <span style=\"background-color: rgb(255, 255, 255);\">Lenovo XClarity Controller (XCC) identified in the related Lenovo Product Security Advisory: <br><span style=\"background-color: rgb(255, 255, 255);\"><a target=\"_blank\" rel=\"nofollow\" href=\"https://support.lenovo.com/us/en/product_security/LEN-118321\">https://support.lenovo.com/us/en/product_security/LEN-118321</a></span></span>", }, ], value: "Customers should update to the version (or later) of Lenovo XClarity Controller (XCC) identified in the related Lenovo Product Security Advisory: \n https://support.lenovo.com/us/en/product_security/LEN-118321 https://support.lenovo.com/us/en/product_security/LEN-118321 ", }, ], source: { discovery: "UNKNOWN", }, x_generator: { engine: "Vulnogram 0.1.0-dev", }, }, }, cveMetadata: { assignerOrgId: "da227ddf-6e25-4b41-b023-0f976dcaca4b", assignerShortName: "lenovo", cveId: "CVE-2023-29058", datePublished: "2023-04-28T20:47:46.172Z", dateReserved: "2023-03-30T12:46:45.646Z", dateUpdated: "2024-08-02T14:00:15.529Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2024-38509
Vulnerability from cvelistv5
Vendor | Product | Version | |
---|---|---|---|
▼ | Lenovo | XClarity Controller |
Version: various |
|
{ containers: { adp: [ { affected: [ { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx5530_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx5530_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx7530_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx7530_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx3331_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx3331_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx_enclosure_certified_node_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx_enclosure_certified_node_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx1021_edg_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx1021_edg_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx1320_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx1320_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx1331_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx1331_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx1321_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx1321_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx1520-r_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx1520-r_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx1521-r_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx1521-r_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx2320-e_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx2320-e_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx2321_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx2321_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx2330_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx2330_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx2331_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx2331_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx2720-e_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx2720-e_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx3320_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx3320_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx3321_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx3321_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx3330_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx3330_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:h:lenovo:thinkagile_hx3331:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx3331", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx3375_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx3375_firmware", vendor: "lenovo", versions: [ { lessThan: "5.61", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx3376_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx3376_firmware", vendor: "lenovo", versions: [ { lessThan: "5.61", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx3520-g_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx3520-g_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx3521-g_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx3521-g_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx3720_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx3720_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx3721_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx3721_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx5520-c_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx5520-c_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx5521-c_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx5521-c_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx5531_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx5531_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx7520_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx7520_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx7521_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx7521_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx7521_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx7521_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx7530_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx7530_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx7531_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx7531_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx7820_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx7820_firmware", vendor: "lenovo", versions: [ { lessThan: "3.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx7821_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx7821_firmware", vendor: "lenovo", versions: [ { lessThan: "3.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_mx1020_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_mx1020_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_mx3330-f_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_mx3330-f_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_mx3330-h_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_mx3330-h_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_mx3331-f_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_mx3331-f_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_mx3331-h_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_mx3331-h_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_mx3530_f_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_mx3530_f_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_mx3530-h_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_mx3530-h_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_mx3531-f_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_mx3531-f_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx1320_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx1320_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx2320_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx2320_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx2330_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx2330_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx3320_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx3320_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx3330_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx3330_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx3520-g_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx3520-g_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx3530-g_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx3530-g_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx3720_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx3720_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx5520_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx5520_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx5530_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx5530_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx7320_n_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx7320_n_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx7330_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx7330_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx7520_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx7520_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx7520_n_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx7520_n_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx7530_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx7530_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx7531_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx7531_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx7820_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx7820_firmware", vendor: "lenovo", versions: [ { lessThan: "3.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkstation_p920_workstation_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkstation_p920_workstation_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_st250_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_st250_firmware", vendor: "lenovo", versions: [ { lessThan: "1.12", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sd530_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sd530_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sd630_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sd630_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sd650_dual_node_tray_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sd650_dual_node_tray_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, { lessThan: "6.36", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sd650-n_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sd650-n_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sd650_v3_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sd650_v3_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sd665_v3_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sd665_v3_firmware", vendor: "lenovo", versions: [ { lessThan: "5.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_se350_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_se350_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sn550_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sn550_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, { lessThan: "6.36", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sn550_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sn550_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sn850_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sn850_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, { lessThan: "6.36", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr150_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr150_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr158_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr158_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr250_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr250_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr250_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr250_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr258_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr258_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr258_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr258_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr530_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr530_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr550_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr550_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr570_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr570_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr590_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr590_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr630_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr630_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr630_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr630_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr630_v3_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr630_v3_firmware", vendor: "lenovo", versions: [ { lessThan: "4.51", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr635_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr635_firmware", vendor: "lenovo", versions: [ { lessThan: "2.81", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr645_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr645_firmware", vendor: "lenovo", versions: [ { lessThan: "5.61", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr645_v3_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr645_v3_firmware", vendor: "lenovo", versions: [ { lessThan: "2.81", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr650_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr650_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr650_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr650_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr655_v3_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr655_v3_firmware", vendor: "lenovo", versions: [ { lessThan: "2.81", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr665_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr665_firmware", vendor: "lenovo", versions: [ { lessThan: "5.61", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr665_v3_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr665_v3_firmware", vendor: "lenovo", versions: [ { lessThan: "5.61", status: "affected", version: "0", versionType: "custom", }, { lessThan: "2.81", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr670_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr670_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr670_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr670_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr670_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr670_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "5.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr675_v3_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr675_v3_firmware", vendor: "lenovo", versions: [ { lessThan: "5.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr850_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr850_firmware", vendor: "lenovo", versions: [ { lessThan: "6.36", status: "affected", version: "0", versionType: "custom", }, { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr850_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr850_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr850_v3_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr850_v3_firmware", vendor: "lenovo", versions: [ { lessThan: "1.20", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr850p_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr850p_firmware", vendor: "lenovo", versions: [ { lessThan: "6.36", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr860_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr860_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr860_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr860_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr860_v3_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr860_v3_firmware", vendor: "lenovo", versions: [ { lessThan: "1.20", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr950_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr950_firmware", vendor: "lenovo", versions: [ { lessThan: "3.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_st250_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_st250_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_st250_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_st250_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_st258_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_st258_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_st258_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_st258_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_st550_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_st550_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_st650_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_st650_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_st650_v3_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_st650_v3_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_st658_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_st658_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_st658_v3_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_st658_v3_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, ], metrics: [ { other: { content: { id: "CVE-2024-38509", options: [ { Exploitation: "none", }, { Automatable: "no", }, { "Technical Impact": "total", }, ], role: "CISA Coordinator", timestamp: "2024-07-27T17:20:51.281908Z", version: "2.0.3", }, type: "ssvc", }, }, ], providerMetadata: { dateUpdated: "2024-07-27T17:21:01.331Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, { providerMetadata: { dateUpdated: "2024-08-02T04:12:24.979Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://support.lenovo.com/us/en/product_security/LEN-156781", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { defaultStatus: "unaffected", product: "XClarity Controller", vendor: "Lenovo", versions: [ { status: "affected", version: "various", }, ], }, ], descriptions: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "<span style=\"background-color: rgb(255, 255, 255);\">A privilege escalation vulnerability was discovered in XCC that could allow an authenticated XCC user with elevated privileges to execute arbitrary code via a specially crafted IPMI command.</span>", }, ], value: "A privilege escalation vulnerability was discovered in XCC that could allow an authenticated XCC user with elevated privileges to execute arbitrary code via a specially crafted IPMI command.", }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.2, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "HIGH", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, format: "CVSS", scenarios: [ { lang: "en", value: "GENERAL", }, ], }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-121", description: "CWE-121 Stack Buffer Overflow", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-07-26T19:45:01.471Z", orgId: "da227ddf-6e25-4b41-b023-0f976dcaca4b", shortName: "lenovo", }, references: [ { url: "https://support.lenovo.com/us/en/product_security/LEN-156781", }, ], solutions: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "Update to the version (or newer) indicated for your model in the Product Impact section in the advisory: <a target=\"_blank\" rel=\"nofollow\" href=\"https://support.lenovo.com/us/en/product_security/LEN-156781\">https://support.lenovo.com/us/en/product_security/LEN-156781</a>\n\n<br>", }, ], value: "Update to the version (or newer) indicated for your model in the Product Impact section in the advisory: https://support.lenovo.com/us/en/product_security/LEN-156781", }, ], source: { discovery: "UNKNOWN", }, x_generator: { engine: "Vulnogram 0.2.0", }, }, }, cveMetadata: { assignerOrgId: "da227ddf-6e25-4b41-b023-0f976dcaca4b", assignerShortName: "lenovo", cveId: "CVE-2024-38509", datePublished: "2024-07-26T19:45:01.471Z", dateReserved: "2024-06-18T14:42:40.470Z", dateUpdated: "2024-08-02T04:12:24.979Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-0683
Vulnerability from cvelistv5
Vendor | Product | Version | |
---|---|---|---|
▼ | Lenovo | XClarity Controller |
Version: See product security advisory below |
|
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T05:17:50.317Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://support.lenovo.com/us/en/product_security/LEN-99936", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { defaultStatus: "unaffected", product: "XClarity Controller", vendor: "Lenovo", versions: [ { status: "affected", version: "See product security advisory below", }, ], }, ], descriptions: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "A valid, authenticated XCC user with read only access may gain elevated privileges through a specifically crafted API call.", }, ], value: "A valid, authenticated XCC user with read only access may gain elevated privileges through a specifically crafted API call.", }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.3, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H", version: "3.1", }, format: "CVSS", scenarios: [ { lang: "en", value: "GENERAL", }, ], }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-20", description: "CWE-20 Improper Input Validation", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2023-05-01T14:23:12.987Z", orgId: "da227ddf-6e25-4b41-b023-0f976dcaca4b", shortName: "lenovo", }, references: [ { url: "https://support.lenovo.com/us/en/product_security/LEN-99936", }, ], solutions: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "Customers should update to the version (or later) of Lenovo XClarity Controller (XCC) identified in the related Lenovo Product Security Advisory: <br><a target=\"_blank\" rel=\"nofollow\" href=\"https://support.lenovo.com/us/en/product_security/LEN-99936\">https://support.lenovo.com/us/en/product_security/LEN-99936</a>", }, ], value: "Customers should update to the version (or later) of Lenovo XClarity Controller (XCC) identified in the related Lenovo Product Security Advisory: \n https://support.lenovo.com/us/en/product_security/LEN-99936 https://support.lenovo.com/us/en/product_security/LEN-99936 ", }, ], source: { discovery: "UNKNOWN", }, x_generator: { engine: "Vulnogram 0.1.0-dev", }, }, }, cveMetadata: { assignerOrgId: "da227ddf-6e25-4b41-b023-0f976dcaca4b", assignerShortName: "lenovo", cveId: "CVE-2023-0683", datePublished: "2023-05-01T14:23:12.987Z", dateReserved: "2023-02-06T15:09:11.048Z", dateUpdated: "2024-08-02T05:17:50.317Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2024-38511
Vulnerability from cvelistv5
Vendor | Product | Version | |
---|---|---|---|
▼ | Lenovo | XClarity Controller |
Version: various |
|
{ containers: { adp: [ { affected: [ { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx3321_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx3321_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx5530_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx5530_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx7530_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx7530_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx3331_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx3331_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx_enclosure_certified_node_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx_enclosure_certified_node_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx1021_edg_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx1021_edg_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx1320_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx1320_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx1331_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx1331_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx1321_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx1321_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx1520-r_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx1520-r_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx1521-r_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx1521-r_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx2320-e_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx2320-e_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx2321_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx2321_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx2330_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx2330_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx2331_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx2331_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx2720-e_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx2720-e_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx3320_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx3320_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx3330_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx3330_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:h:lenovo:thinkagile_hx3331:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx3331", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx3375_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx3375_firmware", vendor: "lenovo", versions: [ { lessThan: "5.61", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx3376_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx3376_firmware", vendor: "lenovo", versions: [ { lessThan: "5.61", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx3520-g_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx3520-g_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx3521-g_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx3521-g_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx3720_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx3720_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx3721_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx3721_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx5520-c_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx5520-c_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx5521-c_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx5521-c_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx5531_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx5531_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx7520_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx7520_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx7521_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx7521_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx7521_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx7521_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx7530_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx7530_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx7531_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx7531_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx7820_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx7820_firmware", vendor: "lenovo", versions: [ { lessThan: "3.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx7821_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx7821_firmware", vendor: "lenovo", versions: [ { lessThan: "3.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_mx1020_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_mx1020_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_mx3330-f_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_mx3330-f_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_mx3330-h_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_mx3330-h_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_mx3331-f_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_mx3331-f_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_mx3331-h_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_mx3331-h_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_mx3530_f_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_mx3530_f_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_mx3530-h_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_mx3530-h_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_mx3531-f_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_mx3531-f_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx1320_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx1320_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx2320_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx2320_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx2330_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx2330_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx3320_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx3320_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx3330_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx3330_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx3520-g_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx3520-g_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx3530-g_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx3530-g_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx3720_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx3720_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx5520_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx5520_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx5530_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx5530_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx7320_n_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx7320_n_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx7330_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx7330_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx7520_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx7520_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx7520_n_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx7520_n_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx7530_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx7530_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx7531_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx7531_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx7820_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx7820_firmware", vendor: "lenovo", versions: [ { lessThan: "3.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkstation_p920_workstation_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkstation_p920_workstation_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_st250_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_st250_firmware", vendor: "lenovo", versions: [ { lessThan: "1.12", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sd530_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sd530_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sd630_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sd630_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sd650_dual_node_tray_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sd650_dual_node_tray_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, { lessThan: "6.36", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sd650-n_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sd650-n_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sd650_v3_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sd650_v3_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sd665_v3_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sd665_v3_firmware", vendor: "lenovo", versions: [ { lessThan: "5.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_se350_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_se350_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sn550_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sn550_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, { lessThan: "6.36", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sn550_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sn550_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sn850_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sn850_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, { lessThan: "6.36", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr150_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr150_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr158_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr158_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr250_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr250_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr250_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr250_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr258_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr258_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr258_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr258_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr530_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr530_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr550_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr550_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr570_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr570_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr590_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr590_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr630_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr630_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr630_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr630_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr630_v3_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr630_v3_firmware", vendor: "lenovo", versions: [ { lessThan: "4.51", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr635_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr635_firmware", vendor: "lenovo", versions: [ { lessThan: "2.81", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr645_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr645_firmware", vendor: "lenovo", versions: [ { lessThan: "5.61", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr645_v3_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr645_v3_firmware", vendor: "lenovo", versions: [ { lessThan: "2.81", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr650_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr650_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr650_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr650_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr655_v3_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr655_v3_firmware", vendor: "lenovo", versions: [ { lessThan: "2.81", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr665_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr665_firmware", vendor: "lenovo", versions: [ { lessThan: "5.61", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr665_v3_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr665_v3_firmware", vendor: "lenovo", versions: [ { lessThan: "5.61", status: "affected", version: "0", versionType: "custom", }, { lessThan: "2.81", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr670_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr670_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr670_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr670_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr670_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr670_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "5.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr675_v3_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr675_v3_firmware", vendor: "lenovo", versions: [ { lessThan: "5.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr850_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr850_firmware", vendor: "lenovo", versions: [ { lessThan: "6.36", status: "affected", version: "0", versionType: "custom", }, { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr850_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr850_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr850_v3_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr850_v3_firmware", vendor: "lenovo", versions: [ { lessThan: "1.20", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr850p_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr850p_firmware", vendor: "lenovo", versions: [ { lessThan: "6.36", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr860_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr860_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr860_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr860_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr860_v3_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr860_v3_firmware", vendor: "lenovo", versions: [ { lessThan: "1.20", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr950_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr950_firmware", vendor: "lenovo", versions: [ { lessThan: "3.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_st250_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_st250_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_st250_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_st250_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_st258_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_st258_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_st258_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_st258_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_st550_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_st550_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_st650_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_st650_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_st650_v3_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_st650_v3_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_st658_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_st658_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_st658_v3_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_st658_v3_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, ], metrics: [ { other: { content: { id: "CVE-2024-38511", options: [ { Exploitation: "none", }, { Automatable: "no", }, { "Technical Impact": "total", }, ], role: "CISA Coordinator", timestamp: "2024-07-27T17:19:44.883076Z", version: "2.0.3", }, type: "ssvc", }, }, ], providerMetadata: { dateUpdated: "2024-07-27T17:19:56.955Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, { providerMetadata: { dateUpdated: "2024-08-02T04:12:25.141Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://support.lenovo.com/us/en/product_security/LEN-156781", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { defaultStatus: "unaffected", product: "XClarity Controller", vendor: "Lenovo", versions: [ { status: "affected", version: "various", }, ], }, ], descriptions: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "<span style=\"background-color: rgb(255, 255, 255);\">A privilege escalation vulnerability was discovered in an upload processing functionality of XCC that could allow an authenticated XCC user with elevated privileges to perform command injection via specially crafted file uploads.</span>", }, ], value: "A privilege escalation vulnerability was discovered in an upload processing functionality of XCC that could allow an authenticated XCC user with elevated privileges to perform command injection via specially crafted file uploads.", }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.2, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "HIGH", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, format: "CVSS", scenarios: [ { lang: "en", value: "GENERAL", }, ], }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-78", description: "CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-07-26T19:45:21.293Z", orgId: "da227ddf-6e25-4b41-b023-0f976dcaca4b", shortName: "lenovo", }, references: [ { url: "https://support.lenovo.com/us/en/product_security/LEN-156781", }, ], solutions: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "Update to the version (or newer) indicated for your model in the Product Impact section in the advisory: <a target=\"_blank\" rel=\"nofollow\" href=\"https://support.lenovo.com/us/en/product_security/LEN-156781\">https://support.lenovo.com/us/en/product_security/LEN-156781</a>\n\n<br>", }, ], value: "Update to the version (or newer) indicated for your model in the Product Impact section in the advisory: https://support.lenovo.com/us/en/product_security/LEN-156781", }, ], source: { discovery: "UNKNOWN", }, x_generator: { engine: "Vulnogram 0.2.0", }, }, }, cveMetadata: { assignerOrgId: "da227ddf-6e25-4b41-b023-0f976dcaca4b", assignerShortName: "lenovo", cveId: "CVE-2024-38511", datePublished: "2024-07-26T19:45:21.293Z", dateReserved: "2024-06-18T14:42:40.470Z", dateUpdated: "2024-08-02T04:12:25.141Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-25492
Vulnerability from cvelistv5
Vendor | Product | Version | |
---|---|---|---|
▼ | Lenovo | XClarity Controller |
Version: See product security advisory below |
|
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T11:25:18.567Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://support.lenovo.com/us/en/product_security/LEN-99936", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { defaultStatus: "unaffected", product: "XClarity Controller", vendor: "Lenovo", versions: [ { status: "affected", version: "See product security advisory below", }, ], }, ], descriptions: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "A valid, authenticated user may be able to trigger a denial of service of the XCC web user interface or other undefined behavior through a format string injection vulnerability in a web interface API.", }, ], value: "A valid, authenticated user may be able to trigger a denial of service of the XCC web user interface or other undefined behavior through a format string injection vulnerability in a web interface API.", }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 6.3, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L", version: "3.1", }, format: "CVSS", scenarios: [ { lang: "en", value: "GENERAL", }, ], }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-134", description: "CWE-134 Use of Externally-Controlled Format String", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2023-05-01T14:11:48.551Z", orgId: "da227ddf-6e25-4b41-b023-0f976dcaca4b", shortName: "lenovo", }, references: [ { url: "https://support.lenovo.com/us/en/product_security/LEN-99936", }, ], solutions: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "Customers should update to the version (or later) of Lenovo XClarity Controller (XCC) identified in the related Lenovo Product Security Advisory:<br><a target=\"_blank\" rel=\"nofollow\" href=\"https://support.lenovo.com/us/en/product_security/LEN-99936\">https://support.lenovo.com/us/en/product_security/LEN-99936</a>", }, ], value: "Customers should update to the version (or later) of Lenovo XClarity Controller (XCC) identified in the related Lenovo Product Security Advisory:\n https://support.lenovo.com/us/en/product_security/LEN-99936 https://support.lenovo.com/us/en/product_security/LEN-99936 ", }, ], source: { discovery: "UNKNOWN", }, x_generator: { engine: "Vulnogram 0.1.0-dev", }, }, }, cveMetadata: { assignerOrgId: "da227ddf-6e25-4b41-b023-0f976dcaca4b", assignerShortName: "lenovo", cveId: "CVE-2023-25492", datePublished: "2023-05-01T14:11:48.551Z", dateReserved: "2023-02-06T15:09:03.709Z", dateUpdated: "2024-08-02T11:25:18.567Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2024-38508
Vulnerability from cvelistv5
Vendor | Product | Version | |
---|---|---|---|
▼ | Lenovo | XClarity Controller |
Version: various |
|
{ containers: { adp: [ { affected: [ { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx5530_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx5530_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx7530_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx7530_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx3331_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx3331_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx_enclosure_certified_node_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx_enclosure_certified_node_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx1021_edg_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx1021_edg_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx1320_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx1320_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx1331_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx1331_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx1321_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx1321_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx1520-r_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx1520-r_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx1521-r_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx1521-r_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx2320-e_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx2320-e_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx2321_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx2321_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx2330_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx2330_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx2331_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx2331_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx2720-e_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx2720-e_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx3320_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx3320_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx3321_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx3321_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx3330_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx3330_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:h:lenovo:thinkagile_hx3331:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx3331", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx3375_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx3375_firmware", vendor: "lenovo", versions: [ { lessThan: "5.61", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx3376_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx3376_firmware", vendor: "lenovo", versions: [ { lessThan: "5.61", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx3520-g_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx3520-g_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx3521-g_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx3521-g_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx3720_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx3720_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx3721_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx3721_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx5520-c_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx5520-c_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx5521-c_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx5521-c_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx5531_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx5531_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx7520_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx7520_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx7521_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx7521_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx7521_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx7521_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx7530_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx7530_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx7531_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx7531_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx7820_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx7820_firmware", vendor: "lenovo", versions: [ { lessThan: "3.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx7821_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx7821_firmware", vendor: "lenovo", versions: [ { lessThan: "3.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_mx1020_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_mx1020_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_mx3330-f_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_mx3330-f_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_mx3330-h_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_mx3330-h_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_mx3331-f_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_mx3331-f_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_mx3331-h_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_mx3331-h_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_mx3530_f_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_mx3530_f_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_mx3530-h_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_mx3530-h_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_mx3531-f_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_mx3531-f_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx1320_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx1320_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx2320_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx2320_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx2330_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx2330_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx3320_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx3320_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx3330_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx3330_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx3520-g_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx3520-g_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx3530-g_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx3530-g_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx3720_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx3720_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx5520_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx5520_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx5530_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx5530_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx7320_n_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx7320_n_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx7330_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx7330_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx7520_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx7520_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx7520_n_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx7520_n_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx7530_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx7530_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx7531_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx7531_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx7820_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx7820_firmware", vendor: "lenovo", versions: [ { lessThan: "3.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkstation_p920_workstation_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkstation_p920_workstation_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_st250_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_st250_firmware", vendor: "lenovo", versions: [ { lessThan: "1.12", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sd530_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sd530_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sd630_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sd630_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sd650_dual_node_tray_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sd650_dual_node_tray_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, { lessThan: "6.36", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sd650-n_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sd650-n_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sd650_v3_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sd650_v3_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sd665_v3_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sd665_v3_firmware", vendor: "lenovo", versions: [ { lessThan: "5.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_se350_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_se350_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sn550_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sn550_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, { lessThan: "6.36", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sn550_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sn550_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sn850_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sn850_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, { lessThan: "6.36", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr150_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr150_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr158_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr158_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr250_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr250_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr250_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr250_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr258_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr258_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr258_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr258_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr530_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr530_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr550_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr550_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr570_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr570_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr590_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr590_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr630_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr630_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr630_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr630_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr630_v3_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr630_v3_firmware", vendor: "lenovo", versions: [ { lessThan: "4.51", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr635_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr635_firmware", vendor: "lenovo", versions: [ { lessThan: "2.81", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr645_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr645_firmware", vendor: "lenovo", versions: [ { lessThan: "5.61", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr645_v3_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr645_v3_firmware", vendor: "lenovo", versions: [ { lessThan: "2.81", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr650_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr650_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr650_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr650_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr655_v3_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr655_v3_firmware", vendor: "lenovo", versions: [ { lessThan: "2.81", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr665_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr665_firmware", vendor: "lenovo", versions: [ { lessThan: "5.61", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr665_v3_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr665_v3_firmware", vendor: "lenovo", versions: [ { lessThan: "5.61", status: "affected", version: "0", versionType: "custom", }, { lessThan: "2.81", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr670_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr670_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr670_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr670_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr670_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr670_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "5.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr675_v3_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr675_v3_firmware", vendor: "lenovo", versions: [ { lessThan: "5.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr850_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr850_firmware", vendor: "lenovo", versions: [ { lessThan: "6.36", status: "affected", version: "0", versionType: "custom", }, { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr850_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr850_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr850_v3_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr850_v3_firmware", vendor: "lenovo", versions: [ { lessThan: "1.20", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr850p_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr850p_firmware", vendor: "lenovo", versions: [ { lessThan: "6.36", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr860_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr860_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr860_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr860_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr860_v3_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr860_v3_firmware", vendor: "lenovo", versions: [ { lessThan: "1.20", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr950_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr950_firmware", vendor: "lenovo", versions: [ { lessThan: "3.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_st250_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_st250_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_st250_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_st250_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_st258_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_st258_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_st258_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_st258_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_st550_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_st550_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_st650_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_st650_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_st650_v3_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_st650_v3_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_st658_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_st658_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_st658_v3_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_st658_v3_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, ], metrics: [ { other: { content: { id: "CVE-2024-38508", options: [ { Exploitation: "none", }, { Automatable: "no", }, { "Technical Impact": "total", }, ], role: "CISA Coordinator", timestamp: "2024-07-27T17:21:26.778193Z", version: "2.0.3", }, type: "ssvc", }, }, ], providerMetadata: { dateUpdated: "2024-07-27T17:21:36.848Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, { providerMetadata: { dateUpdated: "2024-08-02T04:12:25.569Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://support.lenovo.com/us/en/product_security/LEN-156781", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { defaultStatus: "unaffected", product: "XClarity Controller", vendor: "Lenovo", versions: [ { status: "affected", version: "various", }, ], }, ], descriptions: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "<span style=\"background-color: rgb(255, 255, 255);\">A privilege escalation vulnerability was discovered in the web interface or SSH captive command shell interface of XCC that could allow an authenticated XCC user with elevated privileges to perform command injection via a specially crafted request.</span>", }, ], value: "A privilege escalation vulnerability was discovered in the web interface or SSH captive command shell interface of XCC that could allow an authenticated XCC user with elevated privileges to perform command injection via a specially crafted request.", }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.2, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "HIGH", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, format: "CVSS", scenarios: [ { lang: "en", value: "GENERAL", }, ], }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-78", description: "CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-07-26T19:44:50.100Z", orgId: "da227ddf-6e25-4b41-b023-0f976dcaca4b", shortName: "lenovo", }, references: [ { url: "https://support.lenovo.com/us/en/product_security/LEN-156781", }, ], solutions: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "Update to the version (or newer) indicated for your model in the Product Impact section in the advisory: <a target=\"_blank\" rel=\"nofollow\" href=\"https://support.lenovo.com/us/en/product_security/LEN-156781\">https://support.lenovo.com/us/en/product_security/LEN-156781</a>\n\n<br>", }, ], value: "Update to the version (or newer) indicated for your model in the Product Impact section in the advisory: https://support.lenovo.com/us/en/product_security/LEN-156781", }, ], source: { discovery: "UNKNOWN", }, x_generator: { engine: "Vulnogram 0.2.0", }, }, }, cveMetadata: { assignerOrgId: "da227ddf-6e25-4b41-b023-0f976dcaca4b", assignerShortName: "lenovo", cveId: "CVE-2024-38508", datePublished: "2024-07-26T19:44:50.100Z", dateReserved: "2024-06-18T14:42:40.470Z", dateUpdated: "2024-08-02T04:12:25.569Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2024-38510
Vulnerability from cvelistv5
Vendor | Product | Version | |
---|---|---|---|
▼ | Lenovo | XClarity Controller |
Version: various |
|
{ containers: { adp: [ { affected: [ { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx5530_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx5530_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx7530_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx7530_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx3331_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx3331_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx_enclosure_certified_node_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx_enclosure_certified_node_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx1021_edg_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx1021_edg_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx1320_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx1320_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx1331_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx1331_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx1321_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx1321_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx1520-r_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx1520-r_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx1521-r_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx1521-r_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx2320-e_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx2320-e_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx2321_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx2321_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx2330_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx2330_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx2331_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx2331_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx2720-e_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx2720-e_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx3320_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx3320_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx3321_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx3321_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx3330_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx3330_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:h:lenovo:thinkagile_hx3331:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx3331", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx3375_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx3375_firmware", vendor: "lenovo", versions: [ { lessThan: "5.61", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx3376_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx3376_firmware", vendor: "lenovo", versions: [ { lessThan: "5.61", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx3520-g_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx3520-g_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx3521-g_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx3521-g_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx3720_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx3720_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx3721_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx3721_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx5520-c_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx5520-c_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx5521-c_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx5521-c_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx5531_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx5531_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx7520_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx7520_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx7521_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx7521_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx7521_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx7521_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx7530_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx7530_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx7531_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx7531_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx7820_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx7820_firmware", vendor: "lenovo", versions: [ { lessThan: "3.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_hx7821_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_hx7821_firmware", vendor: "lenovo", versions: [ { lessThan: "3.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_mx1020_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_mx1020_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_mx3330-f_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_mx3330-f_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_mx3330-h_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_mx3330-h_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_mx3331-f_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_mx3331-f_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_mx3331-h_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_mx3331-h_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_mx3530_f_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_mx3530_f_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_mx3530-h_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_mx3530-h_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_mx3531-f_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_mx3531-f_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx1320_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx1320_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx2320_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx2320_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx2330_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx2330_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx3320_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx3320_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx3330_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx3330_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx3520-g_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx3520-g_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx3530-g_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx3530-g_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx3720_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx3720_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx5520_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx5520_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx5530_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx5530_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx7320_n_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx7320_n_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx7330_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx7330_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx7520_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx7520_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx7520_n_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx7520_n_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx7530_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx7530_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx7531_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx7531_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkagile_vx7820_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkagile_vx7820_firmware", vendor: "lenovo", versions: [ { lessThan: "3.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinkstation_p920_workstation_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkstation_p920_workstation_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_st250_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_st250_firmware", vendor: "lenovo", versions: [ { lessThan: "1.12", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sd530_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sd530_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sd630_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sd630_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sd650_dual_node_tray_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sd650_dual_node_tray_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, { lessThan: "6.36", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sd650-n_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sd650-n_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sd650_v3_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sd650_v3_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sd665_v3_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sd665_v3_firmware", vendor: "lenovo", versions: [ { lessThan: "5.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_se350_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_se350_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sn550_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sn550_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, { lessThan: "6.36", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sn550_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sn550_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sn850_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sn850_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, { lessThan: "6.36", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr150_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr150_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr158_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr158_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr250_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr250_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr250_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr250_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr258_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr258_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr258_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr258_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr530_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr530_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr550_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr550_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr570_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr570_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr590_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr590_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr630_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr630_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr630_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr630_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr630_v3_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr630_v3_firmware", vendor: "lenovo", versions: [ { lessThan: "4.51", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr635_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr635_firmware", vendor: "lenovo", versions: [ { lessThan: "2.81", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr645_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr645_firmware", vendor: "lenovo", versions: [ { lessThan: "5.61", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr645_v3_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr645_v3_firmware", vendor: "lenovo", versions: [ { lessThan: "2.81", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr650_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr650_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr650_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr650_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.71", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr655_v3_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr655_v3_firmware", vendor: "lenovo", versions: [ { lessThan: "2.81", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr665_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr665_firmware", vendor: "lenovo", versions: [ { lessThan: "5.61", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr665_v3_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr665_v3_firmware", vendor: "lenovo", versions: [ { lessThan: "5.61", status: "affected", version: "0", versionType: "custom", }, { lessThan: "2.81", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr670_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr670_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr670_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr670_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr670_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr670_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "5.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr675_v3_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr675_v3_firmware", vendor: "lenovo", versions: [ { lessThan: "5.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr850_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr850_firmware", vendor: "lenovo", versions: [ { lessThan: "6.36", status: "affected", version: "0", versionType: "custom", }, { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr850_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr850_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr850_v3_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr850_v3_firmware", vendor: "lenovo", versions: [ { lessThan: "1.20", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr850p_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr850p_firmware", vendor: "lenovo", versions: [ { lessThan: "6.36", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr860_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr860_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr860_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr860_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr860_v3_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr860_v3_firmware", vendor: "lenovo", versions: [ { lessThan: "1.20", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_sr950_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_sr950_firmware", vendor: "lenovo", versions: [ { lessThan: "3.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_st250_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_st250_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_st250_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_st250_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_st258_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_st258_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_st258_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_st258_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_st550_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_st550_firmware", vendor: "lenovo", versions: [ { lessThan: "9.97", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_st650_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_st650_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_st650_v3_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_st650_v3_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_st658_v2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_st658_v2_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:thinksystem_st658_v3_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinksystem_st658_v3_firmware", vendor: "lenovo", versions: [ { lessThan: "4.11", status: "affected", version: "0", versionType: "custom", }, ], }, ], metrics: [ { other: { content: { id: "CVE-2024-38510", options: [ { Exploitation: "none", }, { Automatable: "no", }, { "Technical Impact": "total", }, ], role: "CISA Coordinator", timestamp: "2024-07-27T17:20:13.381631Z", version: "2.0.3", }, type: "ssvc", }, }, ], providerMetadata: { dateUpdated: "2024-07-27T17:20:24.112Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, { providerMetadata: { dateUpdated: "2024-08-02T04:12:24.688Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://support.lenovo.com/us/en/product_security/LEN-156781", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { defaultStatus: "unaffected", product: "XClarity Controller", vendor: "Lenovo", versions: [ { status: "affected", version: "various", }, ], }, ], descriptions: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "<span style=\"background-color: rgb(255, 255, 255);\">A privilege escalation vulnerability was discovered in the SSH captive command shell interface that could allow an authenticated XCC user with elevated privileges to perform command injection via specially crafted file uploads. </span>", }, ], value: "A privilege escalation vulnerability was discovered in the SSH captive command shell interface that could allow an authenticated XCC user with elevated privileges to perform command injection via specially crafted file uploads.", }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.2, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "HIGH", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, format: "CVSS", scenarios: [ { lang: "en", value: "GENERAL", }, ], }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-78", description: "CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-07-26T19:45:12.150Z", orgId: "da227ddf-6e25-4b41-b023-0f976dcaca4b", shortName: "lenovo", }, references: [ { url: "https://support.lenovo.com/us/en/product_security/LEN-156781", }, ], solutions: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "Update to the version (or newer) indicated for your model in the Product Impact section in the advisory: <a target=\"_blank\" rel=\"nofollow\" href=\"https://support.lenovo.com/us/en/product_security/LEN-156781\">https://support.lenovo.com/us/en/product_security/LEN-156781</a>\n\n<br>", }, ], value: "Update to the version (or newer) indicated for your model in the Product Impact section in the advisory: https://support.lenovo.com/us/en/product_security/LEN-156781", }, ], source: { discovery: "UNKNOWN", }, x_generator: { engine: "Vulnogram 0.2.0", }, }, }, cveMetadata: { assignerOrgId: "da227ddf-6e25-4b41-b023-0f976dcaca4b", assignerShortName: "lenovo", cveId: "CVE-2024-38510", datePublished: "2024-07-26T19:45:12.150Z", dateReserved: "2024-06-18T14:42:40.470Z", dateUpdated: "2024-08-02T04:12:24.688Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-29057
Vulnerability from cvelistv5
Vendor | Product | Version | |
---|---|---|---|
▼ | Lenovo | XClarity Controller |
Version: Refer to Mitigation strategy section in LEN-118321 |
|
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T14:00:15.127Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://support.lenovo.com/us/en/product_security/LEN-118321", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { defaultStatus: "unaffected", product: "XClarity Controller", vendor: "Lenovo", versions: [ { status: "affected", version: "Refer to Mitigation strategy section in LEN-118321", }, ], }, ], descriptions: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "<span style=\"background-color: rgb(255, 255, 255);\"><span style=\"background-color: rgb(255, 255, 255);\"><span style=\"background-color: rgb(255, 255, 255);\"><span style=\"background-color: rgb(255, 255, 255);\">A valid XCC user's local account permissions overrides their active directory permissions under specific configurations. This could lead to a privilege escalation. To be vulnerable, LDAP must be configured for authentication/authorization and logins configured as “Local First, then LDAP”.</span></span></span></span>", }, ], value: "A valid XCC user's local account permissions overrides their active directory permissions under specific configurations. This could lead to a privilege escalation. To be vulnerable, LDAP must be configured for authentication/authorization and logins configured as “Local First, then LDAP”.", }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.3, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:H", version: "3.1", }, format: "CVSS", scenarios: [ { lang: "en", value: "GENERAL", }, ], }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-276", description: "CWE-276 Incorrect Default Permissions", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2023-04-28T20:53:13.267Z", orgId: "da227ddf-6e25-4b41-b023-0f976dcaca4b", shortName: "lenovo", }, references: [ { url: "https://support.lenovo.com/us/en/product_security/LEN-118321", }, ], solutions: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "Customers should update to the version (or later) of <span style=\"background-color: rgb(255, 255, 255);\">Lenovo XClarity Controller (XCC) identified in the related Lenovo Product Security Advisory: <br><span style=\"background-color: rgb(255, 255, 255);\"><a target=\"_blank\" rel=\"nofollow\" href=\"https://support.lenovo.com/us/en/product_security/LEN-118321\">https://support.lenovo.com/us/en/product_security/LEN-118321</a></span></span>", }, ], value: "Customers should update to the version (or later) of Lenovo XClarity Controller (XCC) identified in the related Lenovo Product Security Advisory: \n https://support.lenovo.com/us/en/product_security/LEN-118321 https://support.lenovo.com/us/en/product_security/LEN-118321 ", }, ], source: { discovery: "UNKNOWN", }, x_generator: { engine: "Vulnogram 0.1.0-dev", }, }, }, cveMetadata: { assignerOrgId: "da227ddf-6e25-4b41-b023-0f976dcaca4b", assignerShortName: "lenovo", cveId: "CVE-2023-29057", datePublished: "2023-04-28T20:53:13.267Z", dateReserved: "2023-03-30T12:46:45.646Z", dateUpdated: "2024-08-02T14:00:15.127Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
var-202002-0371
Vulnerability from variot
An authorization bypass exists in Lenovo XClarity Controller (XCC) versions prior to 3.08 CDI340V, 3.01 TEI392O, 1.71 PSI328N where a valid authenticated user with lesser privileges may be granted read-only access to higher-privileged information if 1) “LDAP Authentication Only with Local Authorization” mode is configured and used by XCC, and 2) a lesser privileged user logs into XCC within 1 minute of a higher privileged user logging out. The authorization bypass does not exist when “Local Authentication and Authorization” or “LDAP Authentication and Authorization” modes are configured and used by XCC. Lenovo XClarity Controller (XCC) Exists in a privilege management vulnerability.Information may be obtained. It is mainly used to standardize and automate basic server management tasks.
Vulnerabilities in the permissions and access control issues exist in Lenovo XCC versions prior to 3.08 CDI340V, versions prior to 3.01 TEI392O, and versions prior to 1.71 PSI328N. The vulnerability stems from the lack of effective permissions and access control measures for network systems or products. No detailed vulnerability details are provided at this time
Show details on source website{ "@context": { "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#", affected_products: { "@id": "https://www.variotdbs.pl/ref/affected_products", }, configurations: { "@id": "https://www.variotdbs.pl/ref/configurations", }, credits: { "@id": "https://www.variotdbs.pl/ref/credits", }, cvss: { "@id": "https://www.variotdbs.pl/ref/cvss/", }, description: { "@id": "https://www.variotdbs.pl/ref/description/", }, exploit_availability: { "@id": "https://www.variotdbs.pl/ref/exploit_availability/", }, external_ids: { "@id": "https://www.variotdbs.pl/ref/external_ids/", }, iot: { "@id": "https://www.variotdbs.pl/ref/iot/", }, iot_taxonomy: { "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/", }, patch: { "@id": "https://www.variotdbs.pl/ref/patch/", }, problemtype_data: { "@id": "https://www.variotdbs.pl/ref/problemtype_data/", }, references: { "@id": "https://www.variotdbs.pl/ref/references/", }, sources: { "@id": "https://www.variotdbs.pl/ref/sources/", }, sources_release_date: { "@id": "https://www.variotdbs.pl/ref/sources_release_date/", }, sources_update_date: { "@id": "https://www.variotdbs.pl/ref/sources_update_date/", }, threat_type: { "@id": "https://www.variotdbs.pl/ref/threat_type/", }, title: { "@id": "https://www.variotdbs.pl/ref/title/", }, type: { "@id": "https://www.variotdbs.pl/ref/type/", }, }, "@id": "https://www.variotdbs.pl/vuln/VAR-202002-0371", affected_products: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/affected_products#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, "@id": "https://www.variotdbs.pl/ref/sources", }, }, data: [ { model: "xclarity controller", scope: "lt", trust: 1, vendor: "lenovo", version: "1.71_psi328n", }, { model: "xclarity controller", scope: "lt", trust: 1, vendor: "lenovo", version: "3.01_tei392o", }, { model: "xclarity controller", scope: "lt", trust: 1, vendor: "lenovo", version: "3.08_cdi340v", }, { model: "xclarity controller", scope: "eq", trust: 0.8, vendor: "lenovo", version: "1.71 psi328n", }, { model: "xclarity controller", scope: "eq", trust: 0.8, vendor: "lenovo", version: "3.01 tei392o", }, { model: "xclarity controller", scope: "eq", trust: 0.8, vendor: "lenovo", version: "3.08 cdi340v", }, { model: "xclarity controller cdi340v", scope: "lt", trust: 0.6, vendor: "lenovo", version: "3.08", }, { model: "xclarity controller tei392o", scope: "lt", trust: 0.6, vendor: "lenovo", version: "3.01", }, { model: "xclarity controller psi328n", scope: "lt", trust: 0.6, vendor: "lenovo", version: "1.71", }, ], sources: [ { db: "CNVD", id: "CNVD-2020-13498", }, { db: "JVNDB", id: "JVNDB-2019-014747", }, { db: "NVD", id: "CVE-2019-6195", }, ], }, configurations: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/configurations#", children: { "@container": "@list", }, cpe_match: { "@container": "@list", }, data: { "@container": "@list", }, nodes: { "@container": "@list", }, }, data: [ { CVE_data_version: "4.0", nodes: [ { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:a:lenovo:xclarity_controller:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "3.01_tei392o", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:lenovo:thinkagile_hx_1000:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:h:lenovo:thinkagile_hx_2000:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:h:lenovo:thinkagile_hx_3000:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:h:lenovo:thinkagile_hx_5000:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:h:lenovo:thinkagile_hx_7000:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:h:lenovo:thinkagile_vx_1000:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:h:lenovo:thinkagile_vx_2000:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:h:lenovo:thinkagile_vx_3000:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:h:lenovo:thinkagile_vx_5000:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:h:lenovo:thinkagile_vx_7000:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:h:lenovo:thinksystem_sd530:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:h:lenovo:thinksystem_sd650_dwc:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:h:lenovo:thinksystem_sn550:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:h:lenovo:thinksystem_sn850:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:h:lenovo:thinksystem_sr150:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:h:lenovo:thinksystem_sr158:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:h:lenovo:thinksystem_sr250:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:h:lenovo:thinksystem_sr258:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:h:lenovo:thinksystem_sr850:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:h:lenovo:thinksystem_sr860:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:h:lenovo:thinksystem_st250:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:h:lenovo:thinksystem_st258:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:a:lenovo:xclarity_controller:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "3.08_cdi340v", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:lenovo:thinkagile_hx_1000:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:h:lenovo:thinkagile_hx_2000:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:h:lenovo:thinkagile_hx_3000:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:h:lenovo:thinkagile_hx_5000:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:h:lenovo:thinkagile_hx_7000:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:h:lenovo:thinkagile_mx_sr650:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:h:lenovo:thinkagile_vx_1000:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:h:lenovo:thinkagile_vx_2000:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:h:lenovo:thinkagile_vx_3000:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:h:lenovo:thinkagile_vx_5000:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:h:lenovo:thinkagile_vx_7000:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:h:lenovo:thinksystem_sr530:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:h:lenovo:thinksystem_sr550:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:h:lenovo:thinksystem_sr570:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:h:lenovo:thinksystem_sr590:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:h:lenovo:thinksystem_sr630:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:h:lenovo:thinksystem_sr650:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:h:lenovo:thinksystem_st550:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, { cpe23Uri: "cpe:2.3:h:lenovo:thinksystem_st558:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:a:lenovo:xclarity_controller:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "1.71_psi328n", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:lenovo:thinksystem_sr950_server:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, ], }, ], sources: [ { db: "NVD", id: "CVE-2019-6195", }, ], }, cve: "CVE-2019-6195", cvss: { "@context": { cvssV2: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#", }, "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2", }, cvssV3: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#", }, "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/", }, severity: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/cvss/severity#", }, "@id": "https://www.variotdbs.pl/ref/cvss/severity", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, "@id": "https://www.variotdbs.pl/ref/sources", }, }, data: [ { cvssV2: [ { acInsufInfo: false, accessComplexity: "HIGH", accessVector: "NETWORK", authentication: "SINGLE", author: "NVD", availabilityImpact: "NONE", baseScore: 2.1, confidentialityImpact: "PARTIAL", exploitabilityScore: 3.9, impactScore: 2.9, integrityImpact: "NONE", obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, severity: "LOW", trust: 1, userInteractionRequired: true, vectorString: "AV:N/AC:H/Au:S/C:P/I:N/A:N", version: "2.0", }, { acInsufInfo: null, accessComplexity: "High", accessVector: "Network", authentication: "Single", author: "NVD", availabilityImpact: "None", baseScore: 2.1, confidentialityImpact: "Partial", exploitabilityScore: null, id: "JVNDB-2019-014747", impactScore: null, integrityImpact: "None", obtainAllPrivilege: null, obtainOtherPrivilege: null, obtainUserPrivilege: null, severity: "Low", trust: 0.8, userInteractionRequired: null, vectorString: "AV:N/AC:H/Au:S/C:P/I:N/A:N", version: "2.0", }, { accessComplexity: "HIGH", accessVector: "NETWORK", authentication: "SINGLE", author: "CNVD", availabilityImpact: "NONE", baseScore: 4.9, confidentialityImpact: "COMPLETE", exploitabilityScore: 3.9, id: "CNVD-2020-13498", impactScore: 6.9, integrityImpact: "NONE", severity: "MEDIUM", trust: 0.6, vectorString: "AV:N/AC:H/Au:S/C:C/I:N/A:N", version: "2.0", }, ], cvssV3: [ { attackComplexity: "HIGH", attackVector: "NETWORK", author: "NVD", availabilityImpact: "NONE", baseScore: 4.8, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", exploitabilityScore: 1.2, impactScore: 3.6, integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", trust: 2, userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:N/A:N", version: "3.1", }, { attackComplexity: "High", attackVector: "Network", author: "NVD", availabilityImpact: "None", baseScore: 4.8, baseSeverity: "Medium", confidentialityImpact: "High", exploitabilityScore: null, id: "JVNDB-2019-014747", impactScore: null, integrityImpact: "None", privilegesRequired: "Low", scope: "Unchanged", trust: 0.8, userInteraction: "Required", vectorString: "CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:N/A:N", version: "3.0", }, ], severity: [ { author: "NVD", id: "CVE-2019-6195", trust: 1, value: "MEDIUM", }, { author: "psirt@lenovo.com", id: "CVE-2019-6195", trust: 1, value: "MEDIUM", }, { author: "NVD", id: "JVNDB-2019-014747", trust: 0.8, value: "Medium", }, { author: "CNVD", id: "CNVD-2020-13498", trust: 0.6, value: "MEDIUM", }, { author: "CNNVD", id: "CNNVD-202002-483", trust: 0.6, value: "MEDIUM", }, ], }, ], sources: [ { db: "CNVD", id: "CNVD-2020-13498", }, { db: "JVNDB", id: "JVNDB-2019-014747", }, { db: "NVD", id: "CVE-2019-6195", }, { db: "NVD", id: "CVE-2019-6195", }, { db: "CNNVD", id: "CNNVD-202002-483", }, ], }, description: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/description#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "An authorization bypass exists in Lenovo XClarity Controller (XCC) versions prior to 3.08 CDI340V, 3.01 TEI392O, 1.71 PSI328N where a valid authenticated user with lesser privileges may be granted read-only access to higher-privileged information if 1) “LDAP Authentication Only with Local Authorization” mode is configured and used by XCC, and 2) a lesser privileged user logs into XCC within 1 minute of a higher privileged user logging out. The authorization bypass does not exist when “Local Authentication and Authorization” or “LDAP Authentication and Authorization” modes are configured and used by XCC. Lenovo XClarity Controller (XCC) Exists in a privilege management vulnerability.Information may be obtained. It is mainly used to standardize and automate basic server management tasks. \n\r\n\r\nVulnerabilities in the permissions and access control issues exist in Lenovo XCC versions prior to 3.08 CDI340V, versions prior to 3.01 TEI392O, and versions prior to 1.71 PSI328N. The vulnerability stems from the lack of effective permissions and access control measures for network systems or products. No detailed vulnerability details are provided at this time", sources: [ { db: "NVD", id: "CVE-2019-6195", }, { db: "JVNDB", id: "JVNDB-2019-014747", }, { db: "CNVD", id: "CNVD-2020-13498", }, ], trust: 2.16, }, external_ids: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/external_ids#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { db: "NVD", id: "CVE-2019-6195", trust: 3, }, { db: "LENOVO", id: "LEN-29116", trust: 1.6, }, { db: "JVNDB", id: "JVNDB-2019-014747", trust: 0.8, }, { db: "CNVD", id: "CNVD-2020-13498", trust: 0.6, }, { db: "CNNVD", id: "CNNVD-202002-483", trust: 0.6, }, ], sources: [ { db: "CNVD", id: "CNVD-2020-13498", }, { db: "JVNDB", id: "JVNDB-2019-014747", }, { db: "NVD", id: "CVE-2019-6195", }, { db: "CNNVD", id: "CNNVD-202002-483", }, ], }, id: "VAR-202002-0371", iot: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/iot#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: true, sources: [ { db: "CNVD", id: "CNVD-2020-13498", }, ], trust: 1.6, }, iot_taxonomy: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { category: [ "Network device", ], sub_category: null, trust: 0.6, }, ], sources: [ { db: "CNVD", id: "CNVD-2020-13498", }, ], }, last_update_date: "2023-12-18T11:58:49.985000Z", patch: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/patch#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { title: "LEN-29116", trust: 0.8, url: "https://support.lenovo.com/us/en/product_security/len-29116", }, { title: "Patch for Lenovo XClarity Controller Rights Licensing and Access Control Issue Vulnerability", trust: 0.6, url: "https://www.cnvd.org.cn/patchinfo/show/204799", }, { title: "Lenovo XClarity Controller Fixes for permissions and access control issues vulnerabilities", trust: 0.6, url: "http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=109590", }, ], sources: [ { db: "CNVD", id: "CNVD-2020-13498", }, { db: "JVNDB", id: "JVNDB-2019-014747", }, { db: "CNNVD", id: "CNNVD-202002-483", }, ], }, problemtype_data: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { problemtype: "CWE-269", trust: 1.8, }, ], sources: [ { db: "JVNDB", id: "JVNDB-2019-014747", }, { db: "NVD", id: "CVE-2019-6195", }, ], }, references: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/references#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { trust: 1.6, url: "https://support.lenovo.com/us/en/product_security/len-29116", }, { trust: 1.4, url: "https://nvd.nist.gov/vuln/detail/cve-2019-6195", }, { trust: 0.8, url: "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-6195", }, { trust: 0.6, url: "https://www.ibm.com/blogs/psirt/security-bulletin-multiple-vulnerabilities-in-firmware-supporting-products-shipped-with-ibm-clouf-pak-system/", }, ], sources: [ { db: "CNVD", id: "CNVD-2020-13498", }, { db: "JVNDB", id: "JVNDB-2019-014747", }, { db: "NVD", id: "CVE-2019-6195", }, { db: "CNNVD", id: "CNNVD-202002-483", }, ], }, sources: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", data: { "@container": "@list", }, }, data: [ { db: "CNVD", id: "CNVD-2020-13498", }, { db: "JVNDB", id: "JVNDB-2019-014747", }, { db: "NVD", id: "CVE-2019-6195", }, { db: "CNNVD", id: "CNNVD-202002-483", }, ], }, sources_release_date: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#", data: { "@container": "@list", }, }, data: [ { date: "2020-02-26T00:00:00", db: "CNVD", id: "CNVD-2020-13498", }, { date: "2020-03-13T00:00:00", db: "JVNDB", id: "JVNDB-2019-014747", }, { date: "2020-02-14T17:15:13.223000", db: "NVD", id: "CVE-2019-6195", }, { date: "2020-02-11T00:00:00", db: "CNNVD", id: "CNNVD-202002-483", }, ], }, sources_update_date: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#", data: { "@container": "@list", }, }, data: [ { date: "2020-02-26T00:00:00", db: "CNVD", id: "CNVD-2020-13498", }, { date: "2020-03-13T00:00:00", db: "JVNDB", id: "JVNDB-2019-014747", }, { date: "2020-03-04T18:26:14.687000", db: "NVD", id: "CVE-2019-6195", }, { date: "2020-12-02T00:00:00", db: "CNNVD", id: "CNNVD-202002-483", }, ], }, threat_type: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/threat_type#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "remote", sources: [ { db: "CNNVD", id: "CNNVD-202002-483", }, ], trust: 0.6, }, title: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/title#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "Lenovo XClarity Controller Vulnerability related to authority management in", sources: [ { db: "JVNDB", id: "JVNDB-2019-014747", }, ], trust: 0.8, }, type: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/type#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "permissions and access control issues", sources: [ { db: "CNNVD", id: "CNNVD-202002-483", }, ], trust: 0.6, }, }