Security Advisory

CVE-2018-9073

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2018-11-16 14:00:00

Last updated 2024-08-05 07:17:50

Assigner lenovo

State PUBLISHED

Description

Lenovo Chassis Management Module (CMM) prior to version 2.0.0 utilizes a hardcoded encryption key to protect certain secrets. Possession of the key can allow an attacker that has already compromised the server to decrypt these secrets.

← Browse all CVEs View on cve.org ↗