Vulnerabilities

CVE-2018-9073

by Fred · 16/11/2018

Lenovo Chassis Management Module (CMM) prior to version 2.0.0 utilizes a hardcoded encryption key to protect certain secrets. Possession of the key can allow an attacker that has already compromised the server to decrypt these secrets.

Date published : 2018-11-16

https://support.lenovo.com/us/en/solutions/LEN-23806

Similar

Tags: Cybersecurity Alert