Lenovo Chassis Management Module Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Lenovo Chassis Management Module Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2018-9073 — CVSS 5.9 (medium): Lenovo Chassis Management Module (CMM) prior to version 2.0.0 utilizes a hardcoded encryption key to protect certain secrets. Possession of…
CVE-2018-9071 — CVSS 5.3 (medium): Lenovo Chassis Management Module (CMM) prior to version 2.0.0 allows unauthenticated users to retrieve information related to the current…