CVE-2023-2992

Description

An unauthenticated  denial of service vulnerability exists in the SMM v1, SMM v2, and FPC management web server which can be triggered under crafted conditions. Rebooting SMM or FPC will restore access to the management web server.

Related CPE's

olenovonextscale_n1200_enclosure_firmware********

hlenovonextscale_n1200_enclosure-*******

olenovothinkagile_cp-cb-10_firmware********

hlenovothinkagile_cp-cb-10-*******

olenovothinkagile_cp-cb-10e_firmware********

hlenovothinkagile_cp-cb-10e-*******

olenovothinkagile_hx_enclosure_certified_node_firmware********

hlenovothinkagile_hx_enclosure_certified_node-*******

olenovothinkagile_vx_enclosure_firmware********

hlenovothinkagile_vx_enclosure-*******

References

https://support.lenovo.com/us/en/product_security/LEN-127357

Vendor Advisory

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics
Created by Yello
About Severity.io