Security Advisory

CVE-2018-16090

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2018-11-27 14:00:00

Last updated 2024-08-05 10:17:37

Assigner lenovo

State PUBLISHED

Description

In System Management Module (SMM) versions prior to 1.06, the SMM certificate creation and parsing logic is vulnerable to post-authentication command injection.

← Browse all CVEs View on cve.org ↗