CVE-2017-3744

In the IMM2 firmware of Lenovo System x servers, remote commands issued by LXCA or other utilities may be captured in the First Failure Data Capture (FFDC) service log if the service log is generated when that remote command is running. Captured command data may contain clear text login information. Authorized users that can capture and export FFDC service log data may have access to these remote commands.

CVSS v3.0 6.5 MEDIUM
CVSS v2.0 4.0 MEDIUM

6.5^/10

CVSS v3.0 : MEDIUM

V3 Legend

Vector : AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Exploitability : 2.8 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

4.0^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:L/Au:S/C:P/I:N/A:N

Exploitability : 8.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication SINGLE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
https://support.lenovo.com/product_security/LEN-14054	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:lenovo:integrated_management_module_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:lenovo:thinkagile_cx4600:-:::::::*
	cpe:2.3:h:lenovo:system_x3500_m5:-:::::::*
	cpe:2.3:h:lenovo:flex_system_x240_m5:-:::::::*
	cpe:2.3:h:lenovo:flex_system_x240_m4:-:::::::*
	cpe:2.3:h:lenovo:system_x3550_m5:-:::::::*
	cpe:2.3:h:lenovo:system_x3750_m4:-:::::::*
	cpe:2.3:h:lenovo:system_x3950_x6:-:::::::*
	cpe:2.3:h:lenovo:nextscale_nx360_m5:-:::::::*
	cpe:2.3:h:lenovo:flex_system_x280_x6:-:::::::*
	cpe:2.3:h:lenovo:thinkagile_cx2200:-:::::::*
	cpe:2.3:h:lenovo:thinkagile_cx4200:-:::::::*
	cpe:2.3:h:lenovo:system_x3650_m5:-:::::::*
	cpe:2.3:h:lenovo:system_x3250_m6:-:::::::*
	cpe:2.3:h:lenovo:flex_system_x880:-:::::::*
	cpe:2.3:h:lenovo:flex_system_x480_x6:-:::::::*
	cpe:2.3:h:lenovo:system_x3850_x6:-:::::::*
	cpe:2.3:h:lenovo:flex_system_x440_m4:-:::::::*

Configuration 2 (hide)

AND

cpe:2.3:o:ibm:integrated_management_module_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:ibm:system_x3650_m4_hd:-:::::::*
	cpe:2.3:h:ibm:system_x3650_m4:-:::::::*
	cpe:2.3:h:ibm:system_x3650_m4_bd:-:::::::*
	cpe:2.3:h:ibm:flex_system_x280_m4:-:::::::*
	cpe:2.3:h:ibm:flex_system_x440_m4:-:::::::*
	cpe:2.3:h:ibm:system_x3850_x6:-:::::::*
	cpe:2.3:h:ibm:nextscale_nx360_m4:-:::::::*
	cpe:2.3:h:ibm:system_x3300_m4:-:::::::*
	cpe:2.3:h:ibm:system_x3530_m4:-:::::::*
	cpe:2.3:h:ibm:system_x3630_m4:-:::::::*
	cpe:2.3:h:ibm:flex_system_x480_m4:-:::::::*
	cpe:2.3:h:ibm:system_x3250_m4:-:::::::*
	cpe:2.3:h:ibm:system_x3250_m5:-:::::::*
	cpe:2.3:h:ibm:idataplex_dx360_m4:-:::::::*
	cpe:2.3:h:ibm:system_x3750_m4:-:::::::*
	cpe:2.3:h:ibm:system_x3950_x6:-:::::::*
	cpe:2.3:h:ibm:idataplex_dx360_m4_water_cooled:-:::::::*
	cpe:2.3:h:ibm:system_x3100_m4:-:::::::*
	cpe:2.3:h:ibm:flex_system_x220_m4:-:::::::*
	cpe:2.3:h:ibm:flex_system_x240_m4:-:::::::*
	cpe:2.3:h:ibm:bladecenter_hs23e:-:::::::*
	cpe:2.3:h:ibm:system_x3500_m4:-:::::::*
	cpe:2.3:h:ibm:flex_system_x880_m4:-:::::::*
	cpe:2.3:h:ibm:flex_system_x222_m4:-:::::::*
	cpe:2.3:h:ibm:bladecenter_hs22:-:::::::*
	cpe:2.3:h:ibm:system_x3550_m4:-:::::::*
	cpe:2.3:h:ibm:system_x3100_m5:-:::::::*
	cpe:2.3:h:ibm:bladecenter_hs23:-:::::::*

Information

Published : 2017-06-19 17:29

Updated : 2019-10-02 17:03

NVD link : CVE-2017-3744

Mitre link : CVE-2017-3744

JSON object : View

CWE

CWE-532

Insertion of Sensitive Information into Log File

Products Affected

ibm

system_x3100_m4
system_x3250_m4
integrated_management_module_firmware
idataplex_dx360_m4_water_cooled
system_x3250_m5
flex_system_x480_m4
system_x3550_m4
bladecenter_hs23
system_x3500_m4
nextscale_nx360_m4
flex_system_x880_m4
flex_system_x280_m4
bladecenter_hs23e
flex_system_x222_m4
flex_system_x240_m4
system_x3650_m4
system_x3100_m5
system_x3300_m4
system_x3950_x6
system_x3650_m4_bd
flex_system_x440_m4
system_x3650_m4_hd
idataplex_dx360_m4
system_x3530_m4
system_x3630_m4
flex_system_x220_m4
system_x3750_m4
bladecenter_hs22
system_x3850_x6

lenovo

flex_system_x880
system_x3650_m5
system_x3850_x6
flex_system_x280_x6
system_x3550_m5
thinkagile_cx4200
nextscale_nx360_m5
flex_system_x440_m4
system_x3500_m5
thinkagile_cx4600
flex_system_x240_m4
thinkagile_cx2200
system_x3750_m4
system_x3250_m6
flex_system_x240_m5
system_x3950_x6
flex_system_x480_x6
integrated_management_module_firmware

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "https://support.lenovo.com/product_security/LEN-14054", "name": "https://support.lenovo.com/product_security/LEN-14054", "tags": ["Vendor Advisory"], "refsource": "CONFIRM"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "In the IMM2 firmware of Lenovo System x servers, remote commands issued by LXCA or other utilities may be captured in the First Failure Data Capture (FFDC) service log if the service log is generated when that remote command is running. Captured command data may contain clear text login information. Authorized users that can capture and export FFDC service log data may have access to these remote commands."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-532"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2017-3744", "ASSIGNER": "psirt@lenovo.com"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 4.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:S/C:P/I:N/A:N", "authentication": "SINGLE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "severity": "MEDIUM", "impactScore": 2.9, "obtainAllPrivilege": false, "exploitabilityScore": 8.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}, "baseMetricV3": {"cvssV3": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 6.5, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 3.6, "exploitabilityScore": 2.8}}, "publishedDate": "2017-06-20T00:29Z", "configurations": {"nodes": [{"children": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:o:lenovo:integrated_management_module_firmware:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "4.9"}]}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:h:lenovo:thinkagile_cx4600:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:lenovo:system_x3500_m5:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:lenovo:flex_system_x240_m5:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:lenovo:flex_system_x240_m4:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:lenovo:system_x3550_m5:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:lenovo:system_x3750_m4:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:lenovo:system_x3950_x6:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:lenovo:nextscale_nx360_m5:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:lenovo:flex_system_x280_x6:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:lenovo:thinkagile_cx2200:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:lenovo:thinkagile_cx4200:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:lenovo:system_x3650_m5:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:lenovo:system_x3250_m6:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:lenovo:flex_system_x880:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:lenovo:flex_system_x480_x6:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:lenovo:system_x3850_x6:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:lenovo:flex_system_x440_m4:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}]}], "operator": "AND", "cpe_match": []}, {"children": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:o:ibm:integrated_management_module_firmware:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "6.19"}]}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:h:ibm:system_x3650_m4_hd:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:ibm:system_x3650_m4:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:ibm:system_x3650_m4_bd:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:ibm:flex_system_x280_m4:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:ibm:flex_system_x440_m4:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:ibm:system_x3850_x6:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:ibm:nextscale_nx360_m4:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:ibm:system_x3300_m4:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:ibm:system_x3530_m4:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:ibm:system_x3630_m4:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:ibm:flex_system_x480_m4:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:ibm:system_x3250_m4:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:ibm:system_x3250_m5:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:ibm:idataplex_dx360_m4:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:ibm:system_x3750_m4:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:ibm:system_x3950_x6:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:ibm:idataplex_dx360_m4_water_cooled:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:ibm:system_x3100_m4:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:ibm:flex_system_x220_m4:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:ibm:flex_system_x240_m4:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:ibm:bladecenter_hs23e:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:ibm:system_x3500_m4:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:ibm:flex_system_x880_m4:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:ibm:flex_system_x222_m4:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:ibm:bladecenter_hs22:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:ibm:system_x3550_m4:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:ibm:system_x3100_m5:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:ibm:bladecenter_hs23:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}]}], "operator": "AND", "cpe_match": []}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2019-10-03T00:03Z"}

6.5 /10

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

4.0 /10

Access Vector NETWORK

Access Complexity LOW

Authentication SINGLE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

JSON object

Attach tags to CVE-2017-3744

6.5^/10

4.0^/10

Attach tags to `CVE-2017-3744`