CVE-2015-3322
Published Apr 16, 2015
Last updated 8 years ago
Overview
- Description
- Lenovo ThinkServer RD350, RD450, RD550, RD650, and TD350 servers before 1.26.0 use weak encryption to store (1) user and (2) administrator BIOS passwords, which allows attackers to decrypt the passwords via unspecified vectors.
- Source
- cve@mitre.org
- NVD status
- Analyzed
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 5
- Impact score
- 2.9
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:P/I:N/A:N
Weaknesses
- nvd@nist.gov
- CWE-310
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:lenovo:thinkserver_rd650_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E9CA62C6-C274-4A02-BA07-14F3093C441F",
"versionEndIncluding": "1.25.0"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:lenovo:thinkserver_rd650:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B688F4B0-E786-48BE-8BF0-5D7264B2EEF5"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:lenovo:thinkserver_td350_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "BE5005E6-8AC3-4E3A-95B0-5874F3BC7970",
"versionEndIncluding": "1.25.0"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:lenovo:thinkserver_td350:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "95E0DD7E-CC62-4384-91D4-7B2128780F7F"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:lenovo:thinkserver_rd350_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "614188E7-FB1D-41A5-B563-A484B1872DA3",
"versionEndIncluding": "1.25.0"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:lenovo:thinkserver_rd350:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5FAF28D1-5E43-4528-A92B-960AD7366A58"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:lenovo:thinkserver_rd550_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "57D10220-9E77-4E53-8861-D6012DC0F084",
"versionEndIncluding": "1.25.0"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:lenovo:thinkserver_rd550:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "85F39E5A-4EB8-4581-8B40-F825E01B6D4F"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:lenovo:thinkserver_rd450_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "46B2325F-2B5E-4ABF-9B60-A51A0433C0B2",
"versionEndIncluding": "1.25.0"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:lenovo:thinkserver_rd450:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E95F55A1-5D77-4D50-8D7F-EEC134451013"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]