Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Cvelist
Cvelistadded 2019/04/22 3:21 p.m.21 views

CVE-2019-6157

In various firmware versions of Lenovo System x, the integrated management module II IMM2's first failure data capture FFDC includes the web server's private key in the generated log file for support...

6.5CVSS7.6AI score0.00301EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletinsadded 2019/01/31 1:55 a.m.30 views

Security Bulletin: Vulnerabilities in OpenSSL affect Integrated Management Module 2 (IMM2) (CVE-2014-3513, CVE-2014-3567, CVE-2014-3568)

Summary OpenSSL vulnerabilities along with SSL 3 Fallback protection TLSFALLBACKSCSV were disclosed on October 15, 2014 by the OpenSSL Project. OpenSSL is used by Integrated Management Module 2. Integrated Management Module 2 has addressed the applicable CVEs and included the SSL 3.0 Fallback...

7.1CVSS0.2AI score0.38443EPSS
Exploits0
Lenovo
Lenovoadded 2018/04/12 5:17 p.m.23 views

IMM2 Web Service Stack Overflow - Lenovo Support US

Lenovo Security Advisory: LEN-19586 Potential Impact: Stack overflow leading to memory corruption Severity: Medium Scope of Impact: Lenovo-specific CVE Identifier: CVE-2017-3774 Summary Description: A stack overflow vulnerability was discovered within the web administration service in the...

9.2AI score0.00585EPSS
Exploits0
Lenovo
Lenovoadded 2018/04/12 5:17 p.m.545 views

IMM2 Web Service Stack Overflow - NL

Lenovo Security Advisory: LEN-19586 Potential Impact: Stack overflow leading to memory corruption Severity: Medium Scope of Impact: Lenovo-specific CVE Identifier: CVE-2017-3774 Summary Description: A stack overflow vulnerability was discovered within the web administration service in the...

7.5CVSS4.2AI score0.00585EPSS
Exploits0
Lenovo
Lenovoadded 2017/08/08 12:0 a.m.18 views

Login information processed by the IMM2 may be exposed to local IMM2 users - Lenovo Support US

No description provided...

6.7AI score
Exploits0
NVD
NVDadded 2017/06/20 12:29 a.m.9 views

CVE-2017-3744

In the IMM2 firmware of Lenovo System x servers, remote commands issued by LXCA or other utilities may be captured in the First Failure Data Capture FFDC service log if the service log is generated when that remote command is running. Captured command data may contain clear text login information...

6.5CVSS6.8AI score0.00264EPSS
Exploits0References1
CVE
CVEadded 2017/06/20 12:0 a.m.38 views

CVE-2017-3744

CVE-2017-3744 affects Lenovo System x IMM2 firmware. Remote commands issued by LXCA/other utilities may be logged in the FFDC service log, potentially exposing clear-text login information to authorized users who can capture/export FFDC data. Impact is confined to Lenovo System x IMM2, with the v...

6.5CVSS6.7AI score0.00264EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder