Lucene search
K

5 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2023/12/07 10:45 p.m.23 views

Security Bulletin: Denial of service vulnerability affects IBM Unified Extensible Firmware Interface (CVE-2018-9085)

Summary IBM System x, Flex and BladeCenter systems have addressed the following denial of service vulnerability in Unified Extensible Firmware Interface UEFI. Vulnerability Details CVEID: CVE-2018-9085 DESCRIPTION: Lenovo System x is vulnerable to a denial of service, caused by missing flash memo...

4.9CVSS0.5AI score0.00664EPSS
Exploits0Affected Software3
CVE
CVE
added 2018/11/16 2:0 p.m.65 views

CVE-2018-9085

CVE-2018-9085 affects Lenovo/IBM System x family vendors. A missing write-protection lock bit after boot enables a locally authenticated attacker with admin access to modify flash areas containing Intel SPS and system flash descriptors. This can lead to system instability or DoS-like behavior, as...

4.9CVSS4.8AI score0.00664EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2018/11/16 2:0 p.m.25 views

CVE-2018-9085 Missing System x Flash Memory Write Protection Lock Bit

A write protection lock bit was left unset after boot on an older generation of Lenovo and IBM System x servers, potentially allowing an attacker with administrator access to modify the subset of flash memory containing Intel Server Platform Services SPS and the system Flash Descriptors...

4.9AI score0.00664EPSS
Exploits0References1
Lenovo
Lenovo
added 2018/11/14 2:28 a.m.15 views

Missing System x Flash Memory Write Protection Lock Bit - Lenovo Support US

No description provided...

4.9CVSS5.1AI score0.00664EPSS
Exploits0
Lenovo
Lenovo
added 2018/11/14 2:28 a.m.354 views

Missing System x Flash Memory Write Protection Lock Bit - US

Lenovo Security Advisory: LEN-24477 Potential Impact: Denial of service Severity: High Scope of Impact: Lenovo-specific CVE Identifier: CVE-2018-9085 Summary Description: A write protection lock bit was left unset after boot on an older generation of System x server, potentially allowing an...

4CVSS2.7AI score0.00664EPSS
Exploits0
Rows per page
Query Builder