CVE-2017-3765
Description
In Enterprise Networking Operating System (ENOS) in Lenovo and IBM RackSwitch and BladeCenter products, an authentication bypass known as "HP Backdoor" was discovered during a Lenovo security audit in the serial console, Telnet, SSH, and Web interfaces. This bypass mechanism can be accessed when performing local authentication under specific circumstances. If exploited, admin-level access to the switch is granted.
- CVSS Version 3.0
- CVSS Version 2.0
nvd
CVE ID: CVE-2017-3765
Base Score: 7.0
Base Severity: HIGH
Vector String:CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
nvd
CVE ID: CVE-2017-3765
Base Score: 6.2
Base Severity: MEDIUM
Vector String:AV:L/AC:H/Au:N/C:C/I:C/A:C
Refrence: NVD