cbcvebase.
CVE-2022-34888
published 2023-01-30

CVE-2022-34888: The Remote Mount feature can potentially be abused by valid, authenticated users to make connections to internal services that may not normally be accessible…

medium4.3CVSS 3.1
AVNACLPRLUINSUCLINAN
The Remote Mount feature can potentially be abused by valid, authenticated users to make connections to internal services that may not normally be accessible to users. Internal service access controls, as applicable, remain in effect.

Affected

99 ranges· showing 25
VendorProductVersion rangeFixed in
lenovolenovo_xclarity_controller
lenovothinkagile_hx1021_firmware< 3.60_tei386m3.60_tei386m
lenovothinkagile_hx1320_firmware< 8.40-cdi394n8.40-cdi394n
lenovothinkagile_hx1321_firmware< 8.40-cdi394n8.40-cdi394n
lenovothinkagile_hx1520-r_firmware< 8.40-cdi394n8.40-cdi394n
lenovothinkagile_hx1521-r_firmware< 8.40-cdi394n8.40-cdi394n
lenovothinkagile_hx2320-e_firmware< 8.40-cdi394n8.40-cdi394n
lenovothinkagile_hx2321_firmware< 8.40-cdi394n8.40-cdi394n
lenovothinkagile_hx2720-e_firmware< 5.20_tei3c8m5.20_tei3c8m
lenovothinkagile_hx3320_firmware< 8.40-cdi394n8.40-cdi394n
lenovothinkagile_hx3321_firmware< 8.40-cdi394n8.40-cdi394n
lenovothinkagile_hx3375_firmware< 4.10_d8bt38l4.10_d8bt38l
lenovothinkagile_hx3376_firmware< 4.10_d8bt38l4.10_d8bt38l
lenovothinkagile_hx3520-g_firmware< 8.40-cdi394n8.40-cdi394n
lenovothinkagile_hx3521-g_firmware< 8.40-cdi394n8.40-cdi394n
lenovothinkagile_hx3720_firmware< 5.20_tei3c8m5.20_tei3c8m
lenovothinkagile_hx3721_firmware< 5.20_tei3c8m5.20_tei3c8m
lenovothinkagile_hx5520-c_firmware< 8.40-cdi394n8.40-cdi394n
lenovothinkagile_hx5520_firmware< 8.40-cdi394n8.40-cdi394n
lenovothinkagile_hx5521-c_firmware< 8.40-cdi394n8.40-cdi394n
lenovothinkagile_hx5521_firmware< 8.40-cdi394n8.40-cdi394n
lenovothinkagile_hx7520_firmware< 8.40-cdi394n8.40-cdi394n
lenovothinkagile_hx7521_firmware< 8.40-cdi394n8.40-cdi394n
lenovothinkagile_hx7820_firmware< 2.50_psi346l2.50_psi346l
lenovothinkagile_hx7821_firmware< 2.50_psi346l2.50_psi346l