Details of VAR-202305-0001

ID

VAR-202305-0001

CVE

CVE-2023-25492

TITLE

plural Lenovo Product Format String Vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2023-009903

DESCRIPTION

A valid, authenticated user may be able to trigger a denial of service of the XCC web user interface or other undefined behavior through a format string injection vulnerability in a web interface API. thinkagile hx5530 firmware, thinkagile hx7530 firmware, ThinkAgile VX3331 firmware etc. Lenovo The product contains a vulnerability in format strings.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state

Trust: 1.71

sources: NVD: CVE-2023-25492 // JVNDB: JVNDB-2023-009903 // VULMON: CVE-2023-25492

AFFECTED PRODUCTS

vendor:	lenovo	model:	thinksystem sr650 v2	scope:	lt	version:	2.93_afbt30p	Trust: 1.0
vendor:	lenovo	model:	thinkagile hx5520	scope:	lt	version:	8.88_cdi3a4a	Trust: 1.0
vendor:	lenovo	model:	thinksystem st258 v2	scope:	lt	version:	2.60_tgbt42h	Trust: 1.0
vendor:	lenovo	model:	thinksystem sr258	scope:	lt	version:	3.72_tei388s	Trust: 1.0
vendor:	lenovo	model:	thinkagile hx1331	scope:	lt	version:	2.93_afbt30p	Trust: 1.0
vendor:	lenovo	model:	thinksystem sr650	scope:	lt	version:	8.88_cdi3a4a	Trust: 1.0
vendor:	lenovo	model:	thinkagile vx1320	scope:	lt	version:	3.72_tei388s	Trust: 1.0
vendor:	lenovo	model:	thinkagile vx2320	scope:	lt	version:	8.88_cdi3a4a	Trust: 1.0
vendor:	lenovo	model:	thinksystem sd630 v2	scope:	lt	version:	2.60_tgbt42h	Trust: 1.0
vendor:	lenovo	model:	thinkagile hx2320-e	scope:	lt	version:	8.88_cdi3a4a	Trust: 1.0
vendor:	lenovo	model:	thinksystem sr158	scope:	lt	version:	3.72_tei388s	Trust: 1.0
vendor:	lenovo	model:	thinkagile hx3320	scope:	lt	version:	8.88_cdi3a4a	Trust: 1.0
vendor:	lenovo	model:	thinkagile vx 1se	scope:	lt	version:	3.72_tei388s	Trust: 1.0
vendor:	lenovo	model:	thinkagile hx2720-e	scope:	lt	version:	3.72_tei388s	Trust: 1.0
vendor:	lenovo	model:	thinksystem sr550	scope:	lt	version:	8.88_cdi3a4a	Trust: 1.0
vendor:	lenovo	model:	thinkagile hx7531	scope:	lt	version:	2.93_afbt30p	Trust: 1.0
vendor:	lenovo	model:	thinkagile mx3530 f	scope:	lt	version:	2.93_afbt30p	Trust: 1.0
vendor:	lenovo	model:	thinksystem sd530	scope:	lt	version:	3.72_tei388s	Trust: 1.0
vendor:	lenovo	model:	thinksystem st250	scope:	lt	version:	3.72_tei388s	Trust: 1.0
vendor:	lenovo	model:	thinkagile hx3331	scope:	lt	version:	2.93_afbt30p	Trust: 1.0
vendor:	lenovo	model:	thinkagile hx1320	scope:	lt	version:	8.88_cdi3a4a	Trust: 1.0
vendor:	lenovo	model:	thinkagile hx5521-c	scope:	lt	version:	2.93_afbt30p	Trust: 1.0
vendor:	lenovo	model:	thinkagile vx3720	scope:	lt	version:	3.72_tei388s	Trust: 1.0
vendor:	lenovo	model:	thinkagile mx3531 h	scope:	lt	version:	2.93_afbt30p	Trust: 1.0
vendor:	lenovo	model:	thinksystem sr950	scope:	lt	version:	2.75_psi348s	Trust: 1.0
vendor:	lenovo	model:	thinkagile hx1321	scope:	lt	version:	8.88_cdi3a4a	Trust: 1.0
vendor:	lenovo	model:	thinkagile hx2330	scope:	eq	version:	2.93_afbt30p	Trust: 1.0
vendor:	lenovo	model:	thinkagile hx3375	scope:	lt	version:	4.71_d8bt48p	Trust: 1.0
vendor:	lenovo	model:	thinksystem sr670	scope:	lt	version:	3.72_tei388s	Trust: 1.0
vendor:	lenovo	model:	thinksystem sr250	scope:	lt	version:	3.72_tei388s	Trust: 1.0
vendor:	lenovo	model:	thinkagile vx7531	scope:	lt	version:	2.93_afbt30p	Trust: 1.0
vendor:	lenovo	model:	thinkagile hx5530	scope:	lt	version:	2.93_afbt30p	Trust: 1.0
vendor:	lenovo	model:	thinksystem st250 v2	scope:	lt	version:	2.60_tgbt42h	Trust: 1.0
vendor:	lenovo	model:	thinkagile hx7530	scope:	lt	version:	2.93_afbt30p	Trust: 1.0
vendor:	lenovo	model:	thinkagile hx7521	scope:	lt	version:	2.93_afbt30p	Trust: 1.0
vendor:	lenovo	model:	thinkstation p920	scope:	lt	version:	8.88_cdi3a4a	Trust: 1.0
vendor:	lenovo	model:	thinksystem st258	scope:	lt	version:	3.72_tei388s	Trust: 1.0
vendor:	lenovo	model:	thinkagile vx3320	scope:	lt	version:	8.88_cdi3a4a	Trust: 1.0
vendor:	lenovo	model:	thinkagile hx3331	scope:	lt	version:	4.71_d8bt48p	Trust: 1.0
vendor:	lenovo	model:	thinkagile hx3720	scope:	lt	version:	3.72_tei388s	Trust: 1.0
vendor:	lenovo	model:	thinksystem sr530	scope:	lt	version:	8.88_cdi3a4a	Trust: 1.0
vendor:	lenovo	model:	thinkagile hx1521-r	scope:	lt	version:	8.88_cdi3a4a	Trust: 1.0
vendor:	lenovo	model:	thinkagile vx3330	scope:	lt	version:	2.93_afbt30p	Trust: 1.0
vendor:	lenovo	model:	thinksystem sn850	scope:	lt	version:	3.72_tei388s	Trust: 1.0
vendor:	lenovo	model:	thinkagile hx2331	scope:	lt	version:	2.93_afbt30p	Trust: 1.0
vendor:	lenovo	model:	thinkagile hx7520	scope:	lt	version:	8.88_cdi3a4a	Trust: 1.0
vendor:	lenovo	model:	thinkagile hx enclosure	scope:	lt	version:	3.72_tei388s	Trust: 1.0
vendor:	lenovo	model:	thinksystem se350	scope:	lt	version:	3.72_tei388s	Trust: 1.0
vendor:	lenovo	model:	thinkagile hx5531	scope:	lt	version:	8.88_cdi3a4a	Trust: 1.0
vendor:	lenovo	model:	thinksystem sr630	scope:	lt	version:	8.88_cdi3a4a	Trust: 1.0
vendor:	lenovo	model:	thinksystem sr645	scope:	lt	version:	4.71_d8bt48p	Trust: 1.0
vendor:	lenovo	model:	thinkagile hx2321	scope:	lt	version:	8.88_cdi3a4a	Trust: 1.0
vendor:	lenovo	model:	thinksystem sr645 v3	scope:	lt	version:	4.71_d8bt48p	Trust: 1.0
vendor:	lenovo	model:	thinkagile mx1020	scope:	lt	version:	2.93_afbt30p	Trust: 1.0
vendor:	lenovo	model:	thinksystem sr850p	scope:	lt	version:	3.72_tei388s	Trust: 1.0
vendor:	lenovo	model:	thinksystem sr250 v2	scope:	lt	version:	2.60_tgbt42h	Trust: 1.0
vendor:	lenovo	model:	thinkagile vx3520-g	scope:	lt	version:	8.88_cdi3a4a	Trust: 1.0
vendor:	lenovo	model:	thinkagile vx7320 n	scope:	lt	version:	8.88_cdi3a4a	Trust: 1.0
vendor:	lenovo	model:	thinkagile hx3521-g	scope:	lt	version:	3.72_tei388s	Trust: 1.0
vendor:	lenovo	model:	thinkagile hx3321	scope:	lt	version:	8.88_cdi3a4a	Trust: 1.0
vendor:	lenovo	model:	thinkagile hx7820	scope:	lt	version:	2.75_psi348s	Trust: 1.0
vendor:	lenovo	model:	thinksystem sr850	scope:	lt	version:	3.72_tei388s	Trust: 1.0
vendor:	lenovo	model:	thinkagile hx1021	scope:	lt	version:	3.72_tei388s	Trust: 1.0
vendor:	lenovo	model:	thinksystem st550	scope:	lt	version:	8.88_cdi3a4a	Trust: 1.0
vendor:	lenovo	model:	thinkagile vx5520	scope:	lt	version:	8.88_cdi3a4a	Trust: 1.0
vendor:	lenovo	model:	thinksystem sr570	scope:	lt	version:	8.88_cdi3a4a	Trust: 1.0
vendor:	lenovo	model:	thinksystem sd650	scope:	lt	version:	3.72_tei388s	Trust: 1.0
vendor:	lenovo	model:	thinkagile hx1520-r	scope:	lt	version:	8.88_cdi3a4a	Trust: 1.0
vendor:	lenovo	model:	thinksystem sn550 v2	scope:	lt	version:	2.60_tgbt42h	Trust: 1.0
vendor:	lenovo	model:	thinkagile vx3530-g	scope:	lt	version:	2.93_afbt30p	Trust: 1.0
vendor:	lenovo	model:	thinksystem sn550	scope:	lt	version:	3.72_tei388s	Trust: 1.0
vendor:	lenovo	model:	thinkagile vx7820	scope:	lt	version:	2.75_psi348s	Trust: 1.0
vendor:	lenovo	model:	thinkagile hx3520-g	scope:	lt	version:	8.88_cdi3a4a	Trust: 1.0
vendor:	lenovo	model:	thinkagile mx3331-h	scope:	lt	version:	2.93_afbt30p	Trust: 1.0
vendor:	lenovo	model:	thinksystem sr860	scope:	lt	version:	3.72_tei388s	Trust: 1.0
vendor:	lenovo	model:	thinksystem st650 v2	scope:	lt	version:	2.60_tgbt42h	Trust: 1.0
vendor:	lenovo	model:	thinksystem sr670 v2	scope:	lt	version:	2.60_tgbt42h	Trust: 1.0
vendor:	lenovo	model:	thinkagile vx7520 n	scope:	lt	version:	8.88_cdi3a4a	Trust: 1.0
vendor:	lenovo	model:	thinkagile hx5521	scope:	lt	version:	8.88_cdi3a4a	Trust: 1.0
vendor:	lenovo	model:	thinksystem sr150	scope:	lt	version:	3.72_tei388s	Trust: 1.0
vendor:	lenovo	model:	thinkagile hx7821	scope:	lt	version:	3.72_tei388s	Trust: 1.0
vendor:	lenovo	model:	thinkagile mx3531-f	scope:	lt	version:	3.72_tei388s	Trust: 1.0
vendor:	lenovo	model:	thinkagile vx 2u4n	scope:	lt	version:	3.72_tei388s	Trust: 1.0
vendor:	lenovo	model:	thinksystem sr665	scope:	lt	version:	4.71_d8bt48p	Trust: 1.0
vendor:	lenovo	model:	thinkagile hx7531	scope:	lt	version:	2.75_psi348s	Trust: 1.0
vendor:	lenovo	model:	thinkagile hx3721	scope:	lt	version:	8.88_cdi3a4a	Trust: 1.0
vendor:	lenovo	model:	thinkagile vx5530	scope:	lt	version:	2.93_afbt30p	Trust: 1.0
vendor:	lenovo	model:	thinkagile vx7330	scope:	lt	version:	2.93_afbt30p	Trust: 1.0
vendor:	lenovo	model:	thinkagile vx7530	scope:	lt	version:	2.93_afbt30p	Trust: 1.0
vendor:	lenovo	model:	thinksystem sr258 v2	scope:	lt	version:	2.60_tgbt42h	Trust: 1.0
vendor:	lenovo	model:	thinkagile vx3331	scope:	lt	version:	2.93_afbt30p	Trust: 1.0
vendor:	lenovo	model:	thinkagile hx5520-c	scope:	lt	version:	8.88_cdi3a4a	Trust: 1.0
vendor:	lenovo	model:	thinksystem sr630 v2	scope:	lt	version:	2.93_afbt30p	Trust: 1.0
vendor:	lenovo	model:	thinkagile vx 4u	scope:	lt	version:	2.75_psi348s	Trust: 1.0
vendor:	lenovo	model:	thinkagile mx3330-f	scope:	lt	version:	2.93_afbt30p	Trust: 1.0
vendor:	lenovo	model:	thinksystem sd650 v2	scope:	lt	version:	2.60_tgbt42h	Trust: 1.0
vendor:	lenovo	model:	thinkagile vx2330	scope:	lt	version:	2.93_afbt30p	Trust: 1.0
vendor:	lenovo	model:	thinkagile hx3376	scope:	lt	version:	8.88_cdi3a4a	Trust: 1.0
vendor:	lenovo	model:	thinkagile vx7520	scope:	lt	version:	8.88_cdi3a4a	Trust: 1.0
vendor:	lenovo	model:	thinkagile hx2330	scope:	lt	version:	2.93_afbt30p	Trust: 1.0
vendor:	lenovo	model:	thinkagile mx3330-h	scope:	lt	version:	2.93_afbt30p	Trust: 1.0
vendor:	lenovo	model:	thinksystem sr590	scope:	lt	version:	8.88_cdi3a4a	Trust: 1.0
vendor:	lenovo	model:	thinkagile mx3331-f	scope:	lt	version:	2.93_afbt30p	Trust: 1.0
vendor:	lenovo	model:	thinksystem sd650-n v2	scope:	lt	version:	2.60_tgbt42h	Trust: 1.0
vendor:	lenovo	model:	thinksystem st658 v2	scope:	lt	version:	2.60_tgbt42h	Trust: 1.0
vendor:	lenovo	model:	thinksystem sr860 v2	scope:	lt	version:	2.60_tgbt42h	Trust: 1.0
vendor:	lenovo	model:	thinkedge se450	scope:	lt	version:	1.60_usx324o	Trust: 1.0
vendor:	lenovo	model:	thinkagile hx3330	scope:	lt	version:	2.93_afbt30p	Trust: 1.0
vendor:	lenovo	model:	thinkagile mx3530-h	scope:	lt	version:	2.93_afbt30p	Trust: 1.0
vendor:	lenovo	model:	thinkagile mx1021 on se350	scope:	lt	version:	3.72_tei388s	Trust: 1.0
vendor:	lenovo	model:	thinksystem sr850 v2	scope:	lt	version:	2.60_tgbt42h	Trust: 1.0
vendor:	lenovo	model:	thinksystem sr665 v3	scope:	lt	version:	4.71_d8bt48p	Trust: 1.0
vendor:	lenovo	model:	thinkagile hx2331	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	thinkagile hx enclosure	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	thinkagile hx1520-r	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	thinkagile hx1521-r	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	thinkagile hx2720-e	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	thinkagile hx1331	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	thinkagile hx1320	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	thinkagile hx2321	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	thinkagile vx3331	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	thinkagile hx2330	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	thinkagile hx7530	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	thinkagile hx1321	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	thinkagile hx3321	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	thinkagile hx3330	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	thinkagile hx1021	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	thinkagile hx5530	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	thinkagile hx3320	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	thinkagile hx2320-e	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	thinkagile hx3331	scope:	-	version:	-	Trust: 0.8

sources: JVNDB: JVNDB-2023-009903 // NVD: CVE-2023-25492

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2023-25492
value:	HIGH
Trust: 1.0
psirt@lenovo.com:	CVE-2023-25492
value:	MEDIUM
Trust: 1.0
NVD:	CVE-2023-25492
value:	HIGH
Trust: 0.8
CNNVD:	CNNVD-202305-037
value:	HIGH
Trust: 0.6

nvd@nist.gov:	CVE-2023-25492
baseSeverity:	HIGH
baseScore:	8.8
vectorString:	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	2.8
impactScore:	5.9
version:	3.1
Trust: 1.0
psirt@lenovo.com:	CVE-2023-25492
baseSeverity:	MEDIUM
baseScore:	6.3
vectorString:	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	LOW
integrityImpact:	LOW
availabilityImpact:	LOW
exploitabilityScore:	2.8
impactScore:	3.4
version:	3.1
Trust: 1.0
NVD:	CVE-2023-25492
baseSeverity:	HIGH
baseScore:	8.8
vectorString:	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: JVNDB: JVNDB-2023-009903 // CNNVD: CNNVD-202305-037 // NVD: CVE-2023-25492 // NVD: CVE-2023-25492

PROBLEMTYPE DATA

problemtype:	CWE-134	Trust: 1.0
problemtype:	Format string problem (CWE-134) [NVD evaluation ]	Trust: 0.8

sources: JVNDB: JVNDB-2023-009903 // NVD: CVE-2023-25492

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-202305-037

TYPE

format string error

Trust: 0.6

sources: CNNVD: CNNVD-202305-037

PATCH

title:

Lenovo XClarity Controller Fixes for formatting string error vulnerabilities

url:

http://123.124.177.30/web/xxk/bdxqById.tag?id=236960

Trust: 0.6

sources: CNNVD: CNNVD-202305-037

EXTERNAL IDS

db:	NVD	id:	CVE-2023-25492	Trust: 3.3
db:	LENOVO	id:	LEN-99936	Trust: 2.5
db:	JVNDB	id:	JVNDB-2023-009903	Trust: 0.8
db:	CNNVD	id:	CNNVD-202305-037	Trust: 0.6
db:	VULMON	id:	CVE-2023-25492	Trust: 0.1

sources: VULMON: CVE-2023-25492 // JVNDB: JVNDB-2023-009903 // CNNVD: CNNVD-202305-037 // NVD: CVE-2023-25492

REFERENCES

url:	https://support.lenovo.com/us/en/product_security/len-99936	Trust: 2.5
url:	https://nvd.nist.gov/vuln/detail/cve-2023-25492	Trust: 0.8
url:	https://cxsecurity.com/cveshow/cve-2023-25492/	Trust: 0.6
url:	https://nvd.nist.gov	Trust: 0.1

sources: VULMON: CVE-2023-25492 // JVNDB: JVNDB-2023-009903 // CNNVD: CNNVD-202305-037 // NVD: CVE-2023-25492

SOURCES

db:	VULMON	id:	CVE-2023-25492
db:	JVNDB	id:	JVNDB-2023-009903
db:	CNNVD	id:	CNNVD-202305-037
db:	NVD	id:	CVE-2023-25492

LAST UPDATE DATE

2024-08-14T13:20:47.027000+00:00

SOURCES UPDATE DATE

db:	VULMON	id:	CVE-2023-25492	date:	2023-05-01T00:00:00
db:	JVNDB	id:	JVNDB-2023-009903	date:	2023-12-07T02:24:00
db:	CNNVD	id:	CNNVD-202305-037	date:	2023-05-11T00:00:00
db:	NVD	id:	CVE-2023-25492	date:	2023-05-10T13:37:50.410

SOURCES RELEASE DATE

db:	VULMON	id:	CVE-2023-25492	date:	2023-05-01T00:00:00
db:	JVNDB	id:	JVNDB-2023-009903	date:	2023-12-07T00:00:00
db:	CNNVD	id:	CNNVD-202305-037	date:	2023-05-01T00:00:00
db:	NVD	id:	CVE-2023-25492	date:	2023-05-01T15:15:09.290