CVE Vulnerabilities

CVE-2015-3322

Published: Apr 16, 2015 | Modified: Jan 18, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:P/I:N/A:N
RedHat/V2
RedHat/V3
Ubuntu

Lenovo ThinkServer RD350, RD450, RD550, RD650, and TD350 servers before 1.26.0 use weak encryption to store (1) user and (2) administrator BIOS passwords, which allows attackers to decrypt the passwords via unspecified vectors.

Affected Software

Name Vendor Start Version End Version
Thinkserver_rd650_firmware Lenovo * 1.25.0 (including)

References