CVE-2017-3768
high-risk
Published 2018-01-26
An unprivileged attacker with connectivity to the IMM2 could cause a denial of service attack on the IMM2 (Versions earlier than 4.4 for Lenovo System x and earlier than 6.4 for IBM System x). Flooding the IMM2 with a high volume of authentication failures via the Common Information Model (CIM) used by LXCA and OneCLI and other tools can exhaust available system memory which can cause the IMM2 to reboot itself until the requests cease.
Do I need to act?
-
0.69% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
7
CVSS 7.5/10
High
NETWORK
/ LOW complexity
Affected Products (20)
Flex System X240 M5 Firmware
Flex System X280 X6 Firmware
Flex System X440 M4 Firmware
Flex System X480 X6 Firmware
Flex System X880 Firmware
Nextscale Nx360 M5 Firmware
System X3250 M6 Firmware
System X3500 M5 Firmware
System X3550 M5 Firmware
System X3650 M5 Firmware
System X3750 M4 Firmware
System X3850 X6 Firmware
System X3950 X6 Firmware
Flex System X240 M4 Firmware
Bladecenter Hs22 Firmware
Bladecenter Hs23 Firmware
Bladecenter Hs23E Firmware
Flex System X220 M4 Firmware
Flex System X222 M4 Firmware
Flex System X240 M4 Firmware
References (2)
Vendor Advisory
https://support.lenovo.com/us/en/product_security/LEN-14450
Vendor Advisory
https://support.lenovo.com/us/en/product_security/LEN-14450
52
/ 100
high-risk
Severity
26/34 · High
Exploitability
2/34 · Minimal
Exposure
24/34 · High