CVE-2017-3765
Published: Jan 10, 2018
Modified: Sep 17, 2024
Description
In Enterprise Networking Operating System (ENOS) in Lenovo and IBM RackSwitch and BladeCenter products, an authentication bypass known as "HP Backdoor" was discovered during a Lenovo security audit in the serial console, Telnet, SSH, and Web interfaces. This bypass mechanism can be accessed when performing local authentication under specific circumstances. If exploited, admin-level access to the switch is granted.
| Vendor | Product | Versions |
|---|---|---|
Lenovo Group Ltd. | Enterprise Network Operating System affecting Lenovo and IBM RackSwitch and BladeCenter Products | affected Earlier than |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now