CVE-2017-3765 in Enterprise Networking Operating System
Sumário (Inglês)
In Enterprise Networking Operating System (ENOS) in Lenovo and IBM RackSwitch and BladeCenter products, an authentication bypass known as "HP Backdoor" was discovered during a Lenovo security audit in the serial console, Telnet, SSH, and Web interfaces. This bypass mechanism can be accessed when performing local authentication under specific circumstances. If exploited, admin-level access to the switch is granted.
Several companies clearly confirm that VulDB is the primary source for best vulnerability data.
Reservar
16/12/2016
Divulgação
10/01/2018
Estado
Confirmado
Inscrições
VulDB provides additional information and datapoints for this CVE:
| ID | Vulnerabilidade | CWE | Exp | Con | CVE |
|---|---|---|---|---|---|
| 111714 | Enterprise Networking Operating System Autenticação fraca | 287 | Não definido | Não definido | CVE-2017-3765 |
Descrição
CPE
CWE
CVSS
Explorações
História
Diferença
Relacionar
Inteligência de ameaças
API JSON
API XML
API CSV