Vulnerability Details : CVE-2017-3765
In Enterprise Networking Operating System (ENOS) in Lenovo and IBM RackSwitch and BladeCenter products, an authentication bypass known as "HP Backdoor" was discovered during a Lenovo security audit in the serial console, Telnet, SSH, and Web interfaces. This bypass mechanism can be accessed when performing local authentication under specific circumstances. If exploited, admin-level access to the switch is granted.
Vulnerability category: BypassGain privilege
Products affected by CVE-2017-3765
- cpe:2.3:o:lenovo:enterprise_network_operating_system:*:*:*:*:*:*:*:*When used together with: Lenovo » Flex System Fabric Cn4093 10gb Converged Scalable Switch » Version: N/AWhen used together with: Lenovo » Flex System Fabric Si4093 10gb System Interconnect Module » Version: N/A
Exploit prediction scoring system (EPSS) score for CVE-2017-3765
0.04%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 7 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2017-3765
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
6.2
|
MEDIUM | AV:L/AC:H/Au:N/C:C/I:C/A:C |
1.9
|
10.0
|
NIST | |
|
7.0
|
HIGH | CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H |
1.0
|
5.9
|
NIST |
CWE ids for CVE-2017-3765
-
When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.Assigned by: nvd@nist.gov (Primary)
References for CVE-2017-3765
-
https://support.lenovo.com/us/en/product_security/LEN-16095
Enterprise Networking Operating System (ENOS) Authentication Bypass in Lenovo and IBM RackSwitch and BladeCenter Products - USMitigation;Patch;Vendor Advisory
-
http://www.securitytracker.com/id/1040296
IBM BladeCenter Switches Authentication Flaw in ENOS Lets Remote Users Access the Target System - SecurityTrackerThird Party Advisory
Jump to