4 matches found
CVE-2018-9071
Lenovo Chassis Management Module CMM prior to version 2.0.0 allows unauthenticated users to retrieve information related to the current authentication configuration settings. Exposed settings relate to password lengths, expiration, and lockout configuration...
CVE-2018-9071
CVE-2018-9071 affects Lenovo Chassis Management Module (CMM) prior to version 2.0.0, where unauthenticated users can retrieve information about the current authentication configuration, including password length, expiration, and lockout settings. The vulnerability is confirmed across multiple sou...
CMM Security Concerns - US
Lenovo Security Advisory: LEN-23806 Potential Impact: Information Disclosure; Hardcoded Encryption Key Severity: Medium Scope of Impact: Lenovo-specific CVE Identifier: CVE-2018-9071, CVE-2018-9073 Summary: In a recent internal audit, Lenovo identified potential security vulnerabilities in the...
CMM Security Concerns - Lenovo Support US
No description provided...