5 matches found
Security Bulletin: Denial of service vulnerability affects IBM Unified Extensible Firmware Interface (CVE-2018-9085)
Summary IBM System x, Flex and BladeCenter systems have addressed the following denial of service vulnerability in Unified Extensible Firmware Interface UEFI. Vulnerability Details CVEID: CVE-2018-9085 DESCRIPTION: Lenovo System x is vulnerable to a denial of service, caused by missing flash memo...
CVE-2018-9085
CVE-2018-9085 affects Lenovo/IBM System x family vendors. A missing write-protection lock bit after boot enables a locally authenticated attacker with admin access to modify flash areas containing Intel SPS and system flash descriptors. This can lead to system instability or DoS-like behavior, as...
CVE-2018-9085 Missing System x Flash Memory Write Protection Lock Bit
A write protection lock bit was left unset after boot on an older generation of Lenovo and IBM System x servers, potentially allowing an attacker with administrator access to modify the subset of flash memory containing Intel Server Platform Services SPS and the system Flash Descriptors...
Missing System x Flash Memory Write Protection Lock Bit - Lenovo Support US
No description provided...
Missing System x Flash Memory Write Protection Lock Bit - US
Lenovo Security Advisory: LEN-24477 Potential Impact: Denial of service Severity: High Scope of Impact: Lenovo-specific CVE Identifier: CVE-2018-9085 Summary Description: A write protection lock bit was left unset after boot on an older generation of System x server, potentially allowing an...