Lucene search

[email protected]CVE-2018-9068

HistoryJul 26, 2018 - 7:29 p.m.

CVE-2018-9068

2018-07-2619:29:00

CWE-798

[email protected]

web.nvd.nist.gov

imm2

ffdc

lenovo system x

ibm system x

sftp

security vulnerability

cve-2018-9068

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

7.2 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.002 Low

EPSS

Percentile

52.1%

JSON

The IMM2 First Failure Data Capture function collects management module logs and diagnostic information when a hardware error is detected. This information is made available for download through an SFTP server hosted on the IMM2 management network interface. In versions earlier than 4.90 for Lenovo System x and earlier than 6.80 for IBM System x, the credentials to access the SFTP server are hard-coded and described in the IMM2 documentation, allowing an attacker with management network access to obtain the collected FFDC data. After applying the update, the IMM2 will create random SFTP credentials for use with OneCLI.

Affected configurations

NVD

Node

lenovoflex_system_x240_m4_firmwareRange<4.90

AND

lenovoflex_system_x240_m4Match-

Node

lenovoflex_system_x240_m5_firmwareRange<4.90

AND

lenovoflex_system_x240_m5Match-

Node

lenovoflex_system_x280_x6_firmwareRange<4.90

AND

lenovoflex_system_x280_x6Match-

Node

lenovoflex_system_x440_m4_firmwareRange<4.90

AND

lenovoflex_system_x440_m4Match-

Node

lenovoflex_system_x480_x6_firmwareRange<4.90

AND

lenovoflex_system_x480_x6Match-

Node

lenovoflex_system_x880_firmwareRange<4.90

AND

lenovoflex_system_x880Match-

Node

lenovonextscale_nx360_m5_firmwareRange<4.90

AND

lenovonextscale_nx360_m5Match-

Node

lenovosystem_x3250_m6_firmwareRange<4.90

AND

lenovosystem_x3250_m6Match-

Node

lenovosystem_x3500_m5_firmwareRange<4.90

AND

lenovosystem_x3500_m5Match-

Node

lenovosystem_x3550_m5_firmwareRange<4.90

AND

lenovosystem_x3550_m5Match-

Node

lenovosystem_x3650_m5_firmwareRange<4.90

AND

lenovosystem_x3650_m5Match-

Node

lenovosystem_x3750_m4_firmwareRange<4.90

AND

lenovosystem_x3750_m4Match-

Node

lenovosystem_x3850_x6_firmwareRange<4.90

AND

lenovosystem_x3850_x6Match-

Node

lenovosystem_x3950_x6_firmwareRange<4.90

AND

lenovosystem_x3950_x6Match-

Node

ibmbladecenter_hs22_firmwareRange<6.80

AND

ibmbladecenter_hs22Match-

Node

ibmbladecenter_hs23_firmwareRange<6.80

AND

ibmbladecenter_hs23Match-

Node

ibmbladecenter_hs23e_firmwareRange<6.80

AND

ibmbladecenter_hs23eMatch-

Node

ibmflex_system_x220_m4_firmwareRange<6.80

AND

ibmflex_system_x220_m4Match-

Node

ibmflex_system_x222_m4_firmwareRange<6.80

AND

ibmflex_system_x222_m4Match-

Node

ibmflex_system_x240_m4_firmwareRange<6.80

AND

ibmflex_system_x240_m4Match-

Node

ibmflex_system_x280_m4_firmwareRange<6.80

AND

ibmflex_system_x280_m4Match-

Node

ibmflex_system_x440_m4_firmwareRange<6.80

AND

ibmflex_system_x440_m4Match-

Node

ibmflex_system_x480_m4_firmwareRange<6.80

AND

ibmflex_system_x480_m4Match-

Node

ibmflex_system_x880_m4_firmwareRange<6.80

AND

ibmflex_system_x880_m4Match-

Node

ibmidataplex_dx360_m4_firmwareRange<6.80

AND

ibmidataplex_dx360_m4Match-

Node

ibmidataplex_dx360_m4_water_cooled_firmwareRange<6.80

AND

ibmidataplex_dx360_m4_water_cooledMatch-

Node

ibmnextscale_nx360_m4_firmwareRange<6.80

AND

ibmnextscale_nx360_m4Match-

Node

ibmsystem_x3100_m4_firmwareRange<6.80

AND

ibmsystem_x3100_m4Match-

Node

ibmsystem_x3100_m5_firmwareRange<6.80

AND

ibmsystem_x3100_m5Match-

Node

ibmsystem_x3250_m4_firmwareRange<6.80

AND

ibmsystem_x3250_m4Match-

Node

ibmsystem_x3250_m5_firmwareRange<6.80

AND

ibmsystem_x3250_m5Match-

Node

ibmsystem_x3300_m4_firmwareRange<6.80

AND

ibmsystem_x3300_m4Match-

Node

ibmsystem_x3500_m4_firmwareRange<6.80

AND

ibmsystem_x3500_m4Match-

Node

ibmsystem_x3530_m4_firmwareRange<6.80

AND

ibmsystem_x3530_m4Match-

Node

ibmsystem_x3550_m4_firmwareRange<6.80

AND

ibmsystem_x3550_m4Match-

Node

ibmsystem_x3630_m4_firmwareRange<6.80

AND

ibmsystem_x3630_m4Match-

Node

ibmsystem_x3650_m4_firmwareRange<6.80

AND

ibmsystem_x3650_m4Match-

Node

ibmsystem_x3650_m4_bd_firmwareRange<6.80

AND

ibmsystem_x3650_m4_bdMatch-

Node

ibmsystem_x3650_m4_hd_firmwareRange<6.80

AND

ibmsystem_x3650_m4_hdMatch-

Node

ibmsystem_x3750_m4_firmwareRange<6.80

AND

ibmsystem_x3750_m4Match-

Node

ibmsystem_x3850_x6_firmwareRange<6.80

AND

ibmsystem_x3850_x6Match-

Node

ibmsystem_x3950_x6_firmwareRange<6.80

AND

ibmsystem_x3950_x6Match-

CPENameOperatorVersion
lenovo:flex_system_x240_m4_firmwarelenovo flex system x240 m4 firmwarelt4.90

CPE	Name	Operator	Version
lenovo:flex_system_x240_m4_firmware	lenovo flex system x240 m4 firmware	lt	4.90

CNA Affected

[
  {
    "product": "System x IMM2",
    "vendor": "Lenovo Group Ltd.",
    "versions": [
      {
        "status": "affected",
        "version": "firmware versions earlier than 4.90"
      }
    ]
  },
  {
    "product": "System x IMM2",
    "vendor": "IBM Corporation",
    "versions": [
      {
        "status": "affected",
        "version": "firmware versions earlier than 6.80"
      }
    ]
  }
]

References

support.lenovo.com/us/en/solutions/LEN-20227

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

7.2 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.002 Low

EPSS

Percentile

52.1%

JSON

Related for CVE-2018-9068

prion1 cvelist1 lenovo2 ibm1 nvd1