Lenovo » Thinkserver Rd550 Firmware : Security Vulnerabilities, CVEs,

CVE-2022-40137

A buffer overflow in the WMI SMI Handler in some Lenovo models may allow an attacker with local access and elevated privileges to execute arbitrary code.
Max CVSS
6.7
EPSS Score
0.04%
Published
2023-01-30
Updated
2023-02-08

CVE-2022-40134

An information leak vulnerability in the SMI Set BIOS Password SMI Handler in some Lenovo models may allow an attacker with local access and elevated privileges to read SMM memory.
Max CVSS
4.4
EPSS Score
0.04%
Published
2023-01-30
Updated
2023-02-08

CVE-2017-17833

OpenSLP releases in the 1.0.2 and 1.1.0 code streams have a heap-related memory corruption issue which may manifest itself as a denial-of-service or a remote code-execution vulnerability.
Max CVSS
9.8
EPSS Score
0.80%
Published
2018-04-23
Updated
2020-05-15

CVE-2015-3322

Lenovo ThinkServer RD350, RD450, RD550, RD650, and TD350 servers before 1.26.0 use weak encryption to store (1) user and (2) administrator BIOS passwords, which allows attackers to decrypt the passwords via unspecified vectors.
Max CVSS
5.0
EPSS Score
0.08%
Published
2015-04-16
Updated
2017-01-18
4 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close