logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2015-3324

Description

The ThinkServer System Manager (TSM) Baseboard Management Controller before firmware 1.27.73476 for ThinkServer RD350, RD450, RD550, RD650, and TD350 does not validate server certificates during an "encrypted remote KVM session," which allows man-in-the-middle attackers to spoof servers.


Affected Software


CPE Name Name Version
lenovo:thinkserver_system_manager_baseboard_management_controller_firmware lenovo thinkserver system manager baseboard management controller firmware 118.71532

Related