5 matches found
EUVD-2018-20676
Malware in sbrugna...
CVE-2018-9071
Lenovo Chassis Management Module CMM prior to version 2.0.0 allows unauthenticated users to retrieve information related to the current authentication configuration settings. Exposed settings relate to password lengths, expiration, and lockout configuration...
Authentication flaw
Lenovo Chassis Management Module CMM prior to version 2.0.0 allows unauthenticated users to retrieve information related to the current authentication configuration settings. Exposed settings relate to password lengths, expiration, and lockout configuration...
CVE-2018-9073
Lenovo Chassis Management Module CMM prior to version 2.0.0 utilizes a hardcoded encryption key to protect certain secrets. Possession of the key can allow an attacker that has already compromised the server to decrypt these secrets...
CVE-2018-9071 CMM Security Vulnerability
Lenovo Chassis Management Module CMM prior to version 2.0.0 allows unauthenticated users to retrieve information related to the current authentication configuration settings. Exposed settings relate to password lengths, expiration, and lockout configuration...