May 29, 2023

Two legacy IBM System x server models, are open to attack tracked as CVE-2021-3723 and will not receive security patches, but a workaround is available for mitigation.

The two models, IBM System x 3550 M3 and IBM System x 3650 M3, are both vulnerable to command injection attacks. The bug allows to execute arbitrary commands on either server model’s operating system via a vulnerable application called Integrated Management Module (IMM).

IMM is used for systems-management functions. On the back panel of System x models, serial and Ethernet connectors use the IMM for device management could allow the execution of operating system commands over an authenticated SSH or Telnet session.

Eight vulnerabilities in a later version of IMM called IMM2 were identified in June 2020, three high-severity. These bugs were tied to flaws in client-side code responsible for implementing the SSH2 protocol, called libssh2.

According to the Lenovo security bulletin, software and security support for System x 3550 and 3650 ended December 31, 2019.

Mitigation ways

  • Disable SSH and Telnet
  • Change the default Administrator password during initial configuration
  • Enforce strong passwords
  • Only grant access to trusted administrators
Tags:

Leave a Reply

You may have missed

CrowdStrike strategy dominates MDR Market

CrowdStrike strategy dominates MDR Market

May 28, 2023
TheCyberThrone Security Week In Review–May 27, 2023

TheCyberThrone Security Week In Review–May 27, 2023

May 28, 2023
Zyxel Patches Critical Buffer Overflow Vulnerability

Zyxel Patches Critical Buffer Overflow Vulnerability

May 27, 2023
Apria Data Breach affects 2 million customers

Apria Data Breach affects 2 million customers

May 27, 2023
CosmicEnergy Malware Shutting Electric grid

CosmicEnergy Malware Shutting Electric grid

May 27, 2023
Operation Magalenha from Brazil

Operation Magalenha from Brazil

May 27, 2023
%d bloggers like this: