CVE-2022-34888

EPSS 0.07%
Published 30.01.2023 22:15:11
Last modified 21.11.2024 07:10:22
Source psirt@lenovo.com
Teams watchlist Login
Open Login

The Remote Mount feature can potentially be abused by valid, authenticated users to make connections to internal services that may not normally be accessible to users. Internal service access controls, as applicable, remain in effect.

Affected products Warnungen 0 Metrics 3 CWE 2 References 4

Data is provided by the National Vulnerability Database (NVD)

Lenovo ≫ Thinkagile Vx3331 Firmware Version < 1.80_afbt20n

Lenovo ≫ Thinkagile Vx3331 Version-

Lenovo ≫ Thinkagile Hx Enclosure Certified Node Firmware Version < 5.20_tei3c8m

Lenovo ≫ Thinkagile Hx Enclosure Certified Node Version-

Lenovo ≫ Thinkagile Hx1021 Firmware Version < 3.60_tei386m

Lenovo ≫ Thinkagile Hx1021 Version-

Lenovo ≫ Thinkagile Hx1320 Firmware Version < 8.40-cdi394n

Lenovo ≫ Thinkagile Hx1320 Version-

Lenovo ≫ Thinkagile Hx1321 Firmware Version < 8.40-cdi394n

Lenovo ≫ Thinkagile Hx1321 Version-

Lenovo ≫ Thinkagile Hx1520-r Firmware Version < 8.40-cdi394n

Lenovo ≫ Thinkagile Hx1520-r Version-

Lenovo ≫ Thinkagile Hx1521-r Firmware Version < 8.40-cdi394n

Lenovo ≫ Thinkagile Hx1521-r Version-

Lenovo ≫ Thinkagile Hx2320-e Firmware Version < 8.40-cdi394n

Lenovo ≫ Thinkagile Hx2320-e Version-

Lenovo ≫ Thinkagile Hx2321 Firmware Version < 8.40-cdi394n

Lenovo ≫ Thinkagile Hx2321 Version-

Lenovo ≫ Thinkagile Hx2720-e Firmware Version < 5.20_tei3c8m

Lenovo ≫ Thinkagile Hx2720-e Version-

Lenovo ≫ Thinkagile Hx3320 Firmware Version < 8.40-cdi394n

Lenovo ≫ Thinkagile Hx3320 Version-

Lenovo ≫ Thinkagile Hx3321 Firmware Version < 8.40-cdi394n

Lenovo ≫ Thinkagile Hx3321 Version-

Lenovo ≫ Thinkagile Hx3375 Firmware Version < 4.10_d8bt38l

Lenovo ≫ Thinkagile Hx3375 Version-

Lenovo ≫ Thinkagile Hx3376 Firmware Version < 4.10_d8bt38l

Lenovo ≫ Thinkagile Hx3376 Version-

Lenovo ≫ Thinkagile Hx3520-g Firmware Version < 8.40-cdi394n

Lenovo ≫ Thinkagile Hx3520-g Version-

Lenovo ≫ Thinkagile Hx3521-g Firmware Version < 8.40-cdi394n

Lenovo ≫ Thinkagile Hx3521-g Version-

Lenovo ≫ Thinkagile Hx3720 Firmware Version < 5.20_tei3c8m

Lenovo ≫ Thinkagile Hx3720 Version-

Lenovo ≫ Thinkagile Hx3721 Firmware Version < 5.20_tei3c8m

Lenovo ≫ Thinkagile Hx3721 Version-

Lenovo ≫ Thinkagile Hx5520 Firmware Version < 8.40-cdi394n

Lenovo ≫ Thinkagile Hx5520 Version-

Lenovo ≫ Thinkagile Hx5520-c Firmware Version < 8.40-cdi394n

Lenovo ≫ Thinkagile Hx5520-c Version-

Lenovo ≫ Thinkagile Hx5521 Firmware Version < 8.40-cdi394n

Lenovo ≫ Thinkagile Hx5521 Version-

Lenovo ≫ Thinkagile Hx5521-c Firmware Version < 8.40-cdi394n

Lenovo ≫ Thinkagile Hx5521-c Version-

Lenovo ≫ Thinkagile Hx7520 Firmware Version < 8.40-cdi394n

Lenovo ≫ Thinkagile Hx7520 Version-

Lenovo ≫ Thinkagile Hx7521 Firmware Version < 8.40-cdi394n

Lenovo ≫ Thinkagile Hx7521 Version-

Lenovo ≫ Thinkagile Hx7820 Firmware Version < 2.50_psi346l

Lenovo ≫ Thinkagile Hx7820 Version-

Lenovo ≫ Thinkagile Hx7821 Firmware Version < 2.50_psi346l

Lenovo ≫ Thinkagile Hx7821 Version-

Lenovo ≫ Thinkagile Mx1020 Firmware Version <= 3.60_tei386m

Lenovo ≫ Thinkagile Mx1020 Version-

Lenovo ≫ Thinkagile Mx3330-f Firmware Version < 1.80_afbt20n

Lenovo ≫ Thinkagile Mx3330-f Version-

Lenovo ≫ Thinkagile Mx3330-h Firmware Version < 1.80_afbt20n

Lenovo ≫ Thinkagile Mx3330-h Version-

Lenovo ≫ Thinkagile Mx3331-f Firmware Version < 1.80_afbt20n

Lenovo ≫ Thinkagile Mx3331-f Version-

Lenovo ≫ Thinkagile Mx3331-h Firmware Version < 1.80_afbt20n

Lenovo ≫ Thinkagile Mx3331-h Version-

Lenovo ≫ Thinkagile Mx3530 F Firmware Version < 1.80_afbt20n

Lenovo ≫ Thinkagile Mx3530 F Version-

Lenovo ≫ Thinkagile Mx3530-h Firmware Version < 1.80_afbt20n

Lenovo ≫ Thinkagile Mx3530-h Version-

Lenovo ≫ Thinkagile Mx3531-f Firmware Version < 1.80_afbt20n

Lenovo ≫ Thinkagile Mx3531-f Version-

Lenovo ≫ Thinkagile Mx3531 H Firmware Version < 1.80_afbt20n

Lenovo ≫ Thinkagile Mx3531 H Version-

Lenovo ≫ Thinkagile Mx1021 Firmware Version < 3.60_tei386m

Lenovo ≫ Thinkagile Mx1021 Version-

Lenovo ≫ Thinkagile Vx 1se Certified Node Firmware Version < 5.20_tei3c8m

Lenovo ≫ Thinkagile Vx 1se Certified Node Version-

Lenovo ≫ Thinkagile Vx 2u4n Firmware Version < 5.20_tei3c8m

Lenovo ≫ Thinkagile Vx 2u4n Version-

Lenovo ≫ Thinkagile Vx 4u Firmware Version < 2.50_psi346l

Lenovo ≫ Thinkagile Vx 4u Version-

Lenovo ≫ Thinkagile Vx1320 Firmware Version < 5.20_tei3c8m

Lenovo ≫ Thinkagile Vx1320 Version-

Lenovo ≫ Thinkagile Vx2320 Firmware Version < 8.40-cdi394n

Lenovo ≫ Thinkagile Vx2320 Version-

Lenovo ≫ Thinkagile Vx2330 Firmware Version < 1.80_afbt20n

Lenovo ≫ Thinkagile Vx2330 Version-

Lenovo ≫ Thinkagile Vx3320 Firmware Version < 8.40-cdi394n

Lenovo ≫ Thinkagile Vx3320 Version-

Lenovo ≫ Thinkagile Vx3330 Firmware Version < 1.80_afbt20n

Lenovo ≫ Thinkagile Vx3330 Version-

Lenovo ≫ Thinkagile Vx3520-g Firmware Version < 8.40-cdi394n

Lenovo ≫ Thinkagile Vx3520-g Version-

Lenovo ≫ Thinkagile Vx3530-g Firmware Version < 1.80_afbt20n

Lenovo ≫ Thinkagile Vx3530-g Version-

Lenovo ≫ Thinkagile Vx3720 Firmware Version < 5.20_tei3c8m

Lenovo ≫ Thinkagile Vx3720 Version-

Lenovo ≫ Thinkagile Vx5520 Firmware Version < 8.40-cdi394n

Lenovo ≫ Thinkagile Vx5520 Version-

Lenovo ≫ Thinkagile Vx5530 Firmware Version < 1.80_afbt20n

Lenovo ≫ Thinkagile Vx5530 Version-

Lenovo ≫ Thinkagile Vx7320 N Firmware Version < 8.40-cdi394n

Lenovo ≫ Thinkagile Vx7320 N Version-

Lenovo ≫ Thinkagile Vx7330 Firmware Version < 1.80_afbt20n

Lenovo ≫ Thinkagile Vx7330 Version-

Lenovo ≫ Thinkagile Vx7520 Firmware Version < 8.40-cdi394n

Lenovo ≫ Thinkagile Vx7520 Version-

Lenovo ≫ Thinkagile Vx7520 N Firmware Version < 8.40-cdi394n

Lenovo ≫ Thinkagile Vx7520 N Version-

Lenovo ≫ Thinkagile Vx7530 Firmware Version < 1.80_afbt20n

Lenovo ≫ Thinkagile Vx7530 Version-

Lenovo ≫ Thinkagile Vx7531 Firmware Version < 1.80_afbt20n

Lenovo ≫ Thinkagile Vx7531 Version-

Lenovo ≫ Thinkagile Vx7820 Firmware Version < 2.50_psi346l

Lenovo ≫ Thinkagile Vx7820 Version-

Lenovo ≫ Thinkedge Se450 Firmware Version < 1.10_usx304w

Lenovo ≫ Thinkedge Se450 Version-

Lenovo ≫ Thinkstation P920 Firmware Version < 8.40-cdi394n

Lenovo ≫ Thinkstation P920 Version-

Lenovo ≫ Thinksystem Sd530 Firmware Version < 5.20_tei3c8m

Lenovo ≫ Thinksystem Sd530 Version-

Lenovo ≫ Thinksystem Sd630 V2 Firmware Version < 2.00_tgbt36o

Lenovo ≫ Thinksystem Sd630 V2 Version-

Lenovo ≫ Thinksystem Sd650 Dwc Firmware Version < 5.20_tei3c8m

Lenovo ≫ Thinksystem Sd650 Dwc Version-

Lenovo ≫ Thinksystem Sd650 V2 Firmware Version < 2.00_tgbt36o

Lenovo ≫ Thinksystem Sd650 V2 Version-

Lenovo ≫ Thinksystem Sd650-n V2 Firmware Version < 2.00_tgbt36o

Lenovo ≫ Thinksystem Sd650-n V2 Version-

Lenovo ≫ Thinksystem Se350 Firmware Version < 3.60_tei386m

Lenovo ≫ Thinksystem Se350 Version-

Lenovo ≫ Thinksystem Sn550 Firmware Version < 5.20_tei3c8m

Lenovo ≫ Thinksystem Sn550 Version-

Lenovo ≫ Thinksystem Sn550 V2 Firmware Version < 2.00_tgbt36o

Lenovo ≫ Thinksystem Sn550 V2 Version-

Lenovo ≫ Thinksystem Sn850 Firmware Version < 5.20_tei3c8m

Lenovo ≫ Thinksystem Sn850 Version-

Lenovo ≫ Thinksystem Sr150 Firmware Version < 5.20_tei3c8m

Lenovo ≫ Thinksystem Sr150 Version-

Lenovo ≫ Thinksystem Sr158 Firmware Version < 5.20_tei3c8m

Lenovo ≫ Thinksystem Sr158 Version-

Lenovo ≫ Thinksystem Sr250 Firmware Version < 5.20_tei3c8m

Lenovo ≫ Thinksystem Sr250 Version-

Lenovo ≫ Thinksystem Sr250 V2 Firmware Version < 1.96_tgbt34x

Lenovo ≫ Thinksystem Sr250 V2 Version-

Lenovo ≫ Thinksystem Sr258 Firmware Version < 5.20_tei3c8m

Lenovo ≫ Thinksystem Sr258 Version-

Lenovo ≫ Thinksystem Sr258 V2 Firmware Version < 1.96_tgbt34x

Lenovo ≫ Thinksystem Sr258 V2 Version-

Lenovo ≫ Thinksystem Sr530 Firmware Version < 8.40-cdi394n

Lenovo ≫ Thinksystem Sr530 Version-

Lenovo ≫ Thinksystem Sr550 Firmware Version < 8.40-cdi394n

Lenovo ≫ Thinksystem Sr550 Version-

Lenovo ≫ Thinksystem Sr570 Firmware Version < 8.40-cdi394n

Lenovo ≫ Thinksystem Sr570 Version-

Lenovo ≫ Thinksystem Sr590 Firmware Version < 8.40-cdi394n

Lenovo ≫ Thinksystem Sr590 Version-

Lenovo ≫ Thinksystem Sr630 Firmware Version < 8.40-cdi394n

Lenovo ≫ Thinksystem Sr630 Version-

Lenovo ≫ Thinksystem Sr630 V2 Firmware Version < 1.80_afbt20n

Lenovo ≫ Thinksystem Sr630 V2 Version-

Lenovo ≫ Thinksystem Sr645 Firmware Version < 4.10_d8bt38l

Lenovo ≫ Thinksystem Sr645 Version-

Lenovo ≫ Thinksystem Sr650 Firmware Version < 8.40-cdi394n

Lenovo ≫ Thinksystem Sr650 Version-

Lenovo ≫ Thinksystem Sr650 V2 Firmware Version < 1.80_afbt20n

Lenovo ≫ Thinksystem Sr650 V2 Version-

Lenovo ≫ Thinksystem Sr665 Firmware Version < 4.10_d8bt38l

Lenovo ≫ Thinksystem Sr665 Version-

Lenovo ≫ Thinksystem Sr670 Firmware Version < 3.60_tei386m

Lenovo ≫ Thinksystem Sr670 Version-

Lenovo ≫ Thinksystem Sr670 V2 Firmware Version < 2.00_tgbt36o

Lenovo ≫ Thinksystem Sr670 V2 Version-

Lenovo ≫ Thinksystem Sr850 Firmware Version < 5.20_tei3c8m

Lenovo ≫ Thinksystem Sr850 Version-

Lenovo ≫ Thinksystem Sr850 V2 Firmware Version < 2.00_tgbt36o

Lenovo ≫ Thinksystem Sr850 V2 Version-

Lenovo ≫ Thinksystem Sr850p Firmware Version < 3.60_tei386m

Lenovo ≫ Thinksystem Sr850p Version-

Lenovo ≫ Thinksystem Sr860 Firmware Version < 5.20_tei3c8m

Lenovo ≫ Thinksystem Sr860 Version-

Lenovo ≫ Thinksystem Sr860 V2 Firmware Version < 2.00_tgbt36o

Lenovo ≫ Thinksystem Sr860 V2 Version-

Lenovo ≫ Thinksystem Sr950 Firmware Version < 2.50_psi346l

Lenovo ≫ Thinksystem Sr950 Version-

Lenovo ≫ Thinksystem St250 Firmware Version < 5.20_tei3c8m

Lenovo ≫ Thinksystem St250 Version-

Lenovo ≫ Thinksystem St250 V2 Firmware Version < 1.96_tgbt34x

Lenovo ≫ Thinksystem St250 V2 Version-

Lenovo ≫ Thinksystem St258 Firmware Version < 5.20_tei3c8m

Lenovo ≫ Thinksystem St258 Version-

Lenovo ≫ Thinksystem St258 V2 Firmware Version < 1.96_tgbt34x

Lenovo ≫ Thinksystem St258 V2 Version-

Lenovo ≫ Thinksystem St550 Firmware Version < 8.40-cdi394n

Lenovo ≫ Thinksystem St550 Version-

Lenovo ≫ Thinksystem St650 V2 Firmware Version < 2.00_tgbt36o

Lenovo ≫ Thinksystem St650 V2 Version-

Lenovo ≫ Thinksystem St658 V2 Firmware Version < 2.00_tgbt36o

Lenovo ≫ Thinksystem St658 V2 Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.07%	0.205

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	4.3	2.8	1.4	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
psirt@lenovo.com	2.7	1.2	1.4	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L

CWE-184 Incomplete List of Disallowed Inputs

The product implements a protection mechanism that relies on a list of inputs (or properties of inputs) that are not allowed by policy or otherwise require other action to neutralize before additional processing takes place, but the list is incomplete.

CWE-697 Incorrect Comparison

The product compares two entities in a security-relevant context, but the comparison is incorrect, which may lead to resultant weaknesses.

https://support.lenovo.com/us/en/product_security/LEN-87734

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2022-34888

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2022-34888

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2022-34888

EUVD