Vulnerability Name:

CVE-2018-16092 (CCN-153006)

Assigned:2018-11-15
Published:2018-11-15
Updated:2019-10-03
Summary:In System Management Module (SMM) versions prior to 1.06, the FFDC feature includes the collection of SMM system files containing sensitive information; notably, the SMM user account credentials and the system shadow file.
CVSS v3 Severity:8.1 High (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H)
7.1 High (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): High
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
7.5 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N)
6.5 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): High
Integrity (I): None
Availibility (A): None
CVSS v2 Severity:4.3 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): None
Availibility (A): None
7.8 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:N/A:N)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): None
Availibility (A): None
Vulnerability Type:CWE-noinfo
Vulnerability Consequences:Obtain Information
References:Source: MITRE
Type: CNA
CVE-2018-16092

Source: XF
Type: UNKNOWN
lenovo-cve201816092-info-disc(153006)

Source: CCN
Type: Lenovo Security Advisory: LEN-24374
System Management Module Vulnerabilities

Source: CONFIRM
Type: Vendor Advisory
https://support.lenovo.com/us/en/solutions/LEN-24374

Vulnerable Configuration:Configuration 1:
  • cpe:/o:lenovo:system_management_module_firmware:*:*:*:*:*:*:*:* (Version < 1.06)
  • AND
  • cpe:/h:lenovo:thinkagile_hx_enclosure_7x81:-:*:*:*:*:*:*:*
  • OR cpe:/h:lenovo:thinkagile_hx_enclosure_7y87:-:*:*:*:*:*:*:*
  • OR cpe:/h:lenovo:thinkagile_hx_enclosure_7z02:-:*:*:*:*:*:*:*
  • OR cpe:/h:lenovo:thinkagile_vx_enclosure_7y11:-:*:*:*:*:*:*:*
  • OR cpe:/h:lenovo:thinkagile_vx_enclosure_7y91:-:*:*:*:*:*:*:*
  • OR cpe:/h:lenovo:thinksystem_d2_enclosure_7x20:-:*:*:*:*:*:*:*
  • OR cpe:/h:lenovo:thinksystem_modular_enclosure_7x22:-:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    lenovo system management module firmware *
    lenovo thinkagile hx enclosure 7x81 -
    lenovo thinkagile hx enclosure 7y87 -
    lenovo thinkagile hx enclosure 7z02 -
    lenovo thinkagile vx enclosure 7y11 -
    lenovo thinkagile vx enclosure 7y91 -
    lenovo thinksystem d2 enclosure 7x20 -
    lenovo thinksystem modular enclosure 7x22 -