CVE-2018-9073 – Lenovo Chassis Management Module (CMM) prior to version 2.0.0 utilizes a hardcoded encrypt …

0

Vuln ID: CVE-2018-9073

Published:  2018-11-16  14:29:00Z

Description: Lenovo Chassis Management Module (CMM) prior to version 2.0.0 utilizes a hardcoded encryption key to protect certain secrets. Possession of the key can allow an attacker that has already compromised the server to decrypt these secrets.

Source: NVD.NIST.GOV