CVE-2018-9085

MEDIUM

Lenovo and IBM System x Servers - Unprotected Flash Memory Modification via Unset Write Protection Lock Bit

Title source: llm

Description

A write protection lock bit was left unset after boot on an older generation of Lenovo and IBM System x servers, potentially allowing an attacker with administrator access to modify the subset of flash memory containing Intel Server Platform Services (SPS) and the system Flash Descriptors.

References (1)

Core 1

Core References

Vendor Advisory x_refsource_confirm

https://support.lenovo.com/us/en/solutions/LEN-24477

Scores

CVSS v3 4.9

EPSS 0.0014

EPSS Percentile 33.2%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N

Details

CWE

CWE-276

Status published

Products (29)

ibm/bladecenter_hs23_firmware < tke160c

ibm/bladecenter_hs23e_firmware < ahe160c

ibm/flex_system_x220_m4_firmware < kse158c

ibm/flex_system_x222_m4_firmware < cce160c

ibm/flex_system_x240_m4_firmware < ahe160c

ibm/flex_system_x280_x6_firmware < n3e132w

ibm/flex_system_x440_m4_firmware < cne162d

ibm/flex_system_x480_x6_firmware < n3e132w

ibm/flex_system_x880_x6_firmware < n2e130e

ibm/idataplex_dx360_m4_firmware < fhe120d

... and 19 more

Published Nov 16, 2018

Tracked Since Feb 18, 2026