CVE-2017-3768
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2017-3768
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
An unprivileged attacker with connectivity to the IMM2 could cause a denial of service attack on the IMM2 (Versions earlier than 4.4 for Lenovo System x and earlier than 6.4 for IBM System x). Flooding the IMM2 with a high volume of authentication failures via the Common Information Model (CIM) used by LXCA and OneCLI and other tools can exhaust available system memory which can cause the IMM2 to reboot itself until the requests cease.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Lenovo System x系列和IBM System x系列安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Lenovo System x是中国联想(Lenovo)公司的一款服务器。IBM System x是美国IBM公司的一款服务器。 Lenovo System x系列4.4之前版本和IBM System x系列6.4之前版本中存在安全漏洞。攻击者可借助大量失败的身份验证请求利用该漏洞造成拒绝服务(重启)。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Lenovo Group Ltd. | Integrated Management Module 2 (IMM2) | Earlier than 4.4 for Lenovo System x | - |
II. Public POCs for CVE-2017-3768
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2017-3768
Please Login to view more intelligence information
- https://support.lenovo.com/us/en/product_security/LEN-14450x_refsource_CONFIRM
- https://nvd.nist.gov/vuln/detail/CVE-2017-3768
IV. Related Vulnerabilities
V. Comments for CVE-2017-3768
No comments yet