EUVD-2017-12861

Malware in sbrugna...

CVE-2020-8332

A potential vulnerability in the SMI callback function used in the legacy BIOS mode USB drivers in some legacy Lenovo and IBM System x servers may allow arbitrary code execution. Servers operating in UEFI mode are not affected...

Security Bulletin: Windows Privilege Impersonation Check affects NVIDIA Windows Device Driver for use on NVIDIA PCIe cards installed in System x servers (CVE-2015-1170)

Summary The NVIDIA Windows Server 2008 and 2008 R2 Display Driver's kernel administrator check improperly validates local client impersonation levels in some cases when using the NVIDIA Windows Device Driver for use on NVIDIA PCIe cards installed in System x Servers. NVIDIA's PCIe cards are...

CVE-2021-3723

A command injection vulnerability was reported in the Integrated Management Module IMM of legacy IBM System x 3550 M3 and IBM System x 3650 M3 servers that could allow the execution of operating system commands over an authenticated SSH or Telnet session...

No Patch for High-Severity Bug in Legacy IBM System X Servers

Two legacy IBM System x server models, retired in 2019, are open to attack and will not receive security patches, according to hardware maker Lenovo. However, the company is offering workaround mitigation. The two models, IBM System x 3550 M3 and IBM System x 3650 M3, are both vulnerable to comma...

IBM System x servers Arbitrary Code Execution Vulnerability

IBM System x servers are a server from International Business Machines Corporation IBM. An arbitrary code execution vulnerability exists in IBM System x servers that stems from a potential flaw in the SMI callback function used in older BIOS mode USB drivers that could allow arbitrary code...

CVE-2020-8332

A potential vulnerability in the SMI callback function used in the legacy BIOS mode USB drivers in some legacy Lenovo and IBM System x servers may allow arbitrary code execution. Servers operating in UEFI mode are not affected...

CVE-2020-8332

A potential vulnerability in the SMI callback function used in the legacy BIOS mode USB drivers in some legacy Lenovo and IBM System x servers may allow arbitrary code execution. Servers operating in UEFI mode are not affected...

CVE-2020-8332

The CVE-2020-8332 issue is tied to the SMI callback function in legacy BIOS mode USB drivers on some legacy Lenovo and IBM System x servers. The vulnerability may allow arbitrary code execution, with UEFI-mode systems unaffected. The affected component is the legacy BIOS USB driver stack; root ca...

System Management Mode (SMM) BIOS Vulnerability in some legacy System x servers - Lenovo Support US

No description provided...

Security Bulletin: Security Vulnerabilities in Network Time Protocol Daemon affect Intel Manycore Platform Software Stack for use on Intel Xeon Phi 3120A, Intel Xeon Phi 5110P, Intel Xeon Phi 7120A, and Intel Xeon Phi 7120P PCI-Express add-in cards

Summary Security Vulnerabilities in Network Time Protocal Daemon affects the Intel Manycore Platform Software Stack for use on the Intel Xeon Phi PCI-Express add-in cards. Vulnerability Details Abstract Security Vulnerabilities in Network Time Protocal Daemon affects the Intel Manycore Platform...

Security Bulletin: GNU C library (glibc) vulnerability affects the Intel MPSS for use on the Intel Xeon Phi 3120A, Intel Xeon Phi 5110P, Intel Xeon Phi 7120A and Intel Xeon Phi 7120P PCI-Express add-in cards sold by IBM/Lenovo

Summary GNU C library glibc vulnerability that has been referred to as GHOST affects the Intel Manycore Platform Software Stack for use on the Intel Xeon Phi PCI-Express add-in cards. The Intel Manycore Platform Software Stack is available for free on Intel's website. This is not something...

Security Bulletin: OpenSSL Security Issues with Intel® MPSS for use on Intel Xeon Phi PCIe cards sold by IBM (CVE-2014-0076, CVE-2014-0195, CVE-2014-0198, CVE-2014-0221, CVE-2014-0224, CVE-2014-3470 and CVE-2010-5298)

Vulnerability Details Abstract This Security Bulletin discusses several security vulnerabilities that affect previous versions of Intel® Manycore Platform Software Stack Intel® MPSS for use on Intel Xeon Phi PCIe cards sold by IBM for use with IBM System x servers. Intel's coprocessors are...

Security Bulletin: Vulnerability in SSLv3 affects Integrated Management Module 2 (IMM2) (CVE-2014-3566)

Summary SSLv3 contains a vulnerability that has been referred to as the Padding Oracle On Downgraded Legacy Encryption POODLE attack. SSLv3 is enabled in Integrated Management Module 2 IMM2. Vulnerability Details Summary SSLv3 contains a vulnerability that has been referred to as the Padding Orac...

CVE-2018-9085

A write protection lock bit was left unset after boot on an older generation of Lenovo and IBM System x servers, potentially allowing an attacker with administrator access to modify the subset of flash memory containing Intel Server Platform Services SPS and the system Flash Descriptors...

CVE-2018-9085

A write protection lock bit was left unset after boot on an older generation of Lenovo and IBM System x servers, potentially allowing an attacker with administrator access to modify the subset of flash memory containing Intel Server Platform Services SPS and the system Flash Descriptors...

Lenovo Patches Arbitrary Code Execution Flaw

Lenovo issued a pair of security advisories on Friday for its popular ThinkPad line and System x servers. One bug is tied to an authentication flaw in the Secure Boot process; and the other to a vulnerability that would allow for arbitrary code execution. The company’s internal testing team...

Potential vulnerability in Intel® SSD Data Center Family for SATA - lu

Lenovo Security Advisory: LEN-6022 Potential Impact: Denial of service Severity:High Scope of Impact: Industry-Wide Summary Description: Intel Solid State Drives SSDs are used in some Lenovo System X servers. The Intel SSD Data Center Family for SATA product series was designed to the ATA-ACS...