14 matches found
PT-2024-3581 · Lenovo · Thinkagile +3
Name of the Vulnerable Software and Affected Versions: Lenovo ThinkSystem, ThinkAgile, NeXtScale, and Lenovo CP-CB-10 affected versions not specified SMM/SMM2 and FPC affected versions not specified Description: A command injection issue was identified in the System Management Module SMM/SMM2 and...
PT-2024-3582 · Lenovo · Thinkagile +3
Name of the Vulnerable Software and Affected Versions: Lenovo ThinkSystem, ThinkAgile, NeXtScale, and Lenovo CP-CB-10 affected versions not specified Description: The issue is related to an authentication bypass vulnerability in the System Management Module SMM/SMM2 and Fan Power Controller FPC...
Security Bulletin: IBM NeXtScale Fan Power Controller (FPC) is affected by vulnerabilities in OpenSSL (CVE-2019-1547 and CVE-2019-1563)
Summary The following vulnerabilities in OpenSSL have been addressed by IBM NeXtScale Fan Power Controller FPC. Vulnerability Details CVEID: CVE-2019-1547 DESCRIPTION: OpenSSL could allow a local authenticated attacker to obtain sensitive information, caused by the ability to construct an EC grou...
Security Bulletin: IBM NeXtScale Fan Power Controller (FPC) is affected by vulnerability in OpenSSL (CVE-2019-1559)
Summary IBM NeXtScale Fan Power Controller FPC has addressed the following vulnerability in OpenSSL. Vulnerability Details CVEID: CVE-2019-1559 DESCRIPTION: If an application encounters a fatal protocol error and then calls SSLshutdown twice once to send a closenotify, and once to receive one the...
Security Bulletin: IBM NeXtScale Fan Power Controller (FPC) is affected by vulnerability in OpenSSL (CVE-2018-0734)
Summary IBM NeXtScale Fan Power Controller FPC has addressed the following vulnerability in OpenSSL. Vulnerability Details CVEID: CVE-2018-0734 DESCRIPTION: OpenSSL could allow a remote attacker to obtain sensitive information, caused by a timing side channel attack in the DSA signature algorithm...
Security Bulletin: Vulnerability in OpenSSL affects IBM NeXtScale Fan Power Controller (FPC) (CVE-2017-3735)
Summary IBM NeXtScale Fan Power Controller FPC has addressed the following vulnerability in OpenSSL. Vulnerability Details Summary IBM NeXtScale Fan Power Controller FPC has addressed the following vulnerability in OpenSSL. Vulnerability Details CVEID: CVE-2017-3735 Description: OpenSSL could all...
Security Bulletin: IBM NeXtScale Fan Power Controller (FPC) is affected by OpenSLP vulnerability (CVE-2017-17833)
Summary IBM NeXtScale Fan Power Controller FPC has addressed the following vulnerability in OpenSLP. Vulnerability Details Summary IBM NeXtScale Fan Power Controller FPC has addressed the following vulnerability in OpenSLP. Vulnerability Details CVEID: CVE-2017-17833 Description: OpenSLP, as used...
Security Bulletin: Vulnerabilities in OpenSSL affect IBM System x, BladeCenter and Flex Systems Unified Extensible Firmware Interface (UEFI) (CVE-2015-0286 CVE-2015-0288 CVE-2015-0289 CVE-2015-0209 CVE-2015-0287)
Summary OpenSSL vulnerabilities were disclosed on March 19th, 2015 by the OpenSSL Project. OpenSSL is used by IBM System x, BladeCenter and Flex Systems Unified Extensible Firmware Interface UEFI. IBM System x, BladeCenter and Flex Systems UEFI have addressedthe applicable CVEs. Vulnerability...
Security Bulletin: A vulnerability in busybox affects IBM NeXtScale Fan Power Controller (FPC) (CVE-2016-2147)
Summary IBM NeXtScale Fan Power Controller FPC has addressed the following vulnerability in busybox. Vulnerability Details Summary IBM NeXtScale Fan Power Controller FPC has addressed the following vulnerability in busybox. Vulnerability Details: CVEID: CVE-2016-2147 Description: BusyBox could...
Security Bulletin: Vulnerabilities in OpenSSL affect NeXtScale n1200 Enclosure Fan Power Controller (FPC) (CVE-2014-3567)
Summary OpenSSL vulnerabilities along with SSL 3 Fallback protection TLSFALLBACKSCSV were disclosed on October 15, 2014 by the OpenSSL Project. OpenSSL is used by Fan Power Controller. Fan Power Controller has addressed the applicable CVEs and included the SSL 3.0 Fallback protection...
Security Bulletin: NeXtScale Fan Power Controller (FPC) July 2014 Fixes (CVE-2014-0224, CVE-2014-0221, CVE-2014-0195, CVE-2014-0198, CVE-2010-5298, CVE-2014-3470)
Summary The NeXtScale Fan Power Controller FPC July 2014 firmware update contains fixes for six vulnerabilities. Vulnerability Details Abstract The NeXtScale Fan Power Controller FPC July 2014 firmware update contains fixes for six vulnerabilities. Content Vulnerability Details: CVE ID:...
Security Bulletin: OpenSSL vulnerabilties affect IBM NeXtScale Fan Power Controller (FPC)
Summary IBM NeXtScale Fan Power Controller FPC has addressed the following vulnerabilities in OpenSSL. Vulnerability Details CVEID: CVE-2018-0739 DESCRIPTION: OpenSSL is vulnerable to a denial of service. By sending specially crafted ASN.1 data with a recursive definition, a remote attacker could...
Design/Logic Flaw
Integrated Management Module II IMM2 on IBM Flex System, NeXtScale, System x3xxx, and System x iDataPlex systems might allow remote authenticated users to obtain sensitive account information via vectors related to generated Service Advisor data FFDC. IBM X-Force ID: 91149...
CVE-2014-0882
CVE-2014-0882 affects IBM IMM2 (Integrated Management Module II) across Flex System x220/x222/x240/x440, NeXtScale nx360 M4, System x3100/M4, x3250/M4, x3500/M4, x3530/M4, x3550/M4, x3630/M4, x3650/M4, x3750/M4, and x iDataPlex dx360 M4, where certain configurations may cause generated Service Ad...