CVE-2021-3849 — Authentication Bypass Using an Alternate Path or Channel in IBM Nextscale FAN Power Controller Firmware

CWE-288 — Authentication Bypass Using an Alternate Path or Channel CWE-287 — Improper Authentication3 documents3 sources

Severity

9.8CRITICALNVD

EPSS

0.5%

top 33.72%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

IBM Nextscale FAN Power Controller Firmware Lenovo Nextscale N1200 Enclosure Firmware Lenovo Thinkagile HX Enclosure Certified Node Firmware +4 more

Timeline

PublishedApr 22

Latest updateApr 23

Description

An authentication bypass vulnerability was discovered in the web interface of the Lenovo Fan Power Controller2 (FPC2) and Lenovo System Management Module (SMM) firmware that could allow an unauthenticated attacker to execute commands on the SMM and FPC2. SMM2 is not affected.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages7 packages

▶CVEListV5lenovo/lenovo_system_management_modulevarious

▶NVDlenovo/thinksystem_d2_enclosure_firmware< tesm28b-1.21

▶CVEListV5lenovo/fan_power_controller2various

▶NVDlenovo/thinkagile_vx_enclosure_firmware< tesm28b-1.21

▶NVDlenovo/nextscale_n1200_enclosure_firmware< fhet50b-2.90

🔴Vulnerability Details

GHSA

GHSA-vxqg-r9mf-h85v: An authentication bypass vulnerability was discovered in the web interface of the Lenovo Fan Power Controller2 (FPC2) and Lenovo System Management Mod↗2022-04-23

▶

CVEList

CVE-2021-3849: An authentication bypass vulnerability was discovered in the web interface of the Lenovo Fan Power Controller2 (FPC2) and Lenovo System Management Mod↗2022-04-22

▶