CVE-2023-4855 - Vulnerability Details - OpenCVE

Description

A command injection vulnerability was identified in SMM/SMM2 and FPC that could allow an authenticated user with elevated privileges to execute unauthorized commands via IPMI.

Published: 2024-04-15

Score: 7.2 High

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Analysis and contextual insights are available on OpenCVE Cloud.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Lenovo

SMM, SMM2, FPC

unaffected

Version	Status	Constraints
`various`	affected	—

No data.

No data.

No data available yet.

Remediation

Vendor Solution

Update SMM/SMM2 or FPC to the version (or newer) indicated for your model in the advisory: https://support.lenovo.com/us/en/product_security/LEN-140420

Tracking

Sign in to view the affected projects.

Advisories

Source	ID	Title
EUVD	EUVD-2023-54695	A command injection vulnerability was identified in SMM/SMM2 and FPC that could allow an authenticated user with elevated privileges to execute unauthorized commands via IPMI.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00354.

Key SSVC decision points have not yet been added.

References

Link	Providers
https://support.lenovo.com/us/en/product_security/LEN-140420

History

No history.

Subscriptions

No data.

MITRE

Status: PUBLISHED

Assigner: lenovo

Published: 2024-04-15T17:58:53.588Z

Updated: 2024-08-02T07:38:00.762Z

Reserved: 2023-09-08T19:23:04.502Z

Link: CVE-2023-4855

Vulnrichment

Updated: 2024-08-02T07:38:00.762Z

NVD

Status : Deferred

Published: 2024-04-15T18:15:09.260

Modified: 2026-04-15T00:35:42.020

Link: CVE-2023-4855

Redhat

No data.

OpenCVE Enrichment

No data.

Weaknesses

CWE-78

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2023-4855", "assignerOrgId": "da227ddf-6e25-4b41-b023-0f976dcaca4b", "state": "PUBLISHED", "assignerShortName": "lenovo", "dateReserved": "2023-09-08T19:23:04.502Z", "datePublished": "2024-04-15T17:58:53.588Z", "dateUpdated": "2024-08-02T07:38:00.762Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "SMM, SMM2, FPC", "vendor": "Lenovo", "versions": [{"status": "affected", "version": "various"}]}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "\n\n<span style=\"background-color: rgb(255, 255, 255);\">A command injection vulnerability was identified in SMM/SMM2 and FPC that could allow an authenticated user with elevated privileges to execute unauthorized commands via IPMI.</span>\n\n"}], "value": "\nA command injection vulnerability was identified in SMM/SMM2 and FPC that could allow an authenticated user with elevated privileges to execute unauthorized commands via IPMI.\n\n"}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.2, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-78", "description": "CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "da227ddf-6e25-4b41-b023-0f976dcaca4b", "shortName": "lenovo", "dateUpdated": "2024-04-15T17:58:53.588Z"}, "references": [{"url": "https://support.lenovo.com/us/en/product_security/LEN-140420"}], "solutions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "\n\nUpdate SMM/SMM2 or FPC\n\n to the version (or newer) indicated for your model in the advisory: <a target=\"_blank\" rel=\"nofollow\" href=\"https://support.lenovo.com/us/en/product_security/LEN-140420\">https://support.lenovo.com/us/en/product_security/LEN-140420</a>   <br>"}], "value": "\nUpdate\u00a0SMM/SMM2 or FPC\n\n to the version (or newer) indicated for your model in the advisory:\u00a0 https://support.lenovo.com/us/en/product_security/LEN-140420 \u00a0\u00a0\u00a0\n"}], "source": {"discovery": "UNKNOWN"}, "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}, "adp": [{"affected": [{"vendor": "lenovo", "product": "fan_power_controller", "cpes": ["cpe:2.3:a:lenovo:fan_power_controller:*:*:*:*:*:*:*:*"], "defaultStatus": "unaffected", "versions": [{"version": "0", "status": "affected", "lessThan": "fhet62a-3.50", "versionType": "custom"}]}, {"vendor": "lenovo", "product": "system_management_module_firmware", "cpes": ["cpe:2.3:o:lenovo:system_management_module_firmware:1.24:*:*:*:*:*:*:*"], "defaultStatus": "affected", "versions": [{"version": "1.24", "status": "affected", "lessThan": "tesm40b-1.27", "versionType": "custom"}]}], "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-07-09T19:59:49.051788Z", "id": "CVE-2023-4855", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-07-09T20:00:42.214Z"}}, {"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T07:38:00.762Z"}, "title": "CVE Program Container", "references": [{"url": "https://support.lenovo.com/us/en/product_security/LEN-140420", "tags": ["x_transferred"]}]}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://support.lenovo.com/us/en/product_security/LEN-140420", "tags": ["x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T07:38:00.762Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2023-4855", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2024-07-09T19:59:49.051788Z"}}}], "affected": [{"cpes": ["cpe:2.3:a:lenovo:fan_power_controller:*:*:*:*:*:*:*:*"], "vendor": "lenovo", "product": "fan_power_controller", "versions": [{"status": "affected", "version": "0", "lessThan": "fhet62a-3.50", "versionType": "custom"}], "defaultStatus": "unaffected"}, {"cpes": ["cpe:2.3:o:lenovo:system_management_module_firmware:1.24:*:*:*:*:*:*:*"], "vendor": "lenovo", "product": "system_management_module_firmware", "versions": [{"status": "affected", "version": "1.24", "lessThan": "tesm40b-1.27", "versionType": "custom"}], "defaultStatus": "affected"}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-05-23T19:01:23.848Z"}}], "cna": {"source": {"discovery": "UNKNOWN"}, "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.2, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "HIGH", "confidentialityImpact": "HIGH"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "Lenovo", "product": "SMM, SMM2, FPC", "versions": [{"status": "affected", "version": "various"}], "defaultStatus": "unaffected"}], "solutions": [{"lang": "en", "value": "\nUpdate\u00a0SMM/SMM2 or FPC\n\n to the version (or newer) indicated for your model in the advisory:\u00a0 https://support.lenovo.com/us/en/product_security/LEN-140420 \u00a0\u00a0\u00a0\n", "supportingMedia": [{"type": "text/html", "value": "\n\nUpdate SMM/SMM2 or FPC\n\n to the version (or newer) indicated for your model in the advisory: <a target=\"_blank\" rel=\"nofollow\" href=\"https://support.lenovo.com/us/en/product_security/LEN-140420\">https://support.lenovo.com/us/en/product_security/LEN-140420</a>   <br>", "base64": false}]}], "references": [{"url": "https://support.lenovo.com/us/en/product_security/LEN-140420"}], "x_generator": {"engine": "Vulnogram 0.1.0-dev"}, "descriptions": [{"lang": "en", "value": "\nA command injection vulnerability was identified in SMM/SMM2 and FPC that could allow an authenticated user with elevated privileges to execute unauthorized commands via IPMI.\n\n", "supportingMedia": [{"type": "text/html", "value": "\n\n<span style=\"background-color: rgb(255, 255, 255);\">A command injection vulnerability was identified in SMM/SMM2 and FPC that could allow an authenticated user with elevated privileges to execute unauthorized commands via IPMI.</span>\n\n", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-78", "description": "CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')"}]}], "providerMetadata": {"orgId": "da227ddf-6e25-4b41-b023-0f976dcaca4b", "shortName": "lenovo", "dateUpdated": "2024-04-15T17:58:53.588Z"}}}, "cveMetadata": {"cveId": "CVE-2023-4855", "state": "PUBLISHED", "dateUpdated": "2024-08-02T07:38:00.762Z", "dateReserved": "2023-09-08T19:23:04.502Z", "assignerOrgId": "da227ddf-6e25-4b41-b023-0f976dcaca4b", "datePublished": "2024-04-15T17:58:53.588Z", "assignerShortName": "lenovo"}, "dataVersion": "5.1"}