CVE-2024-45105 | Lenovo HX5530 Appliance XCC System Management Mode expired pointer dereference

A vulnerability, which was classified as critical, was found in Lenovo HX5530 Appliance XCC, HX7530 Appliance XCC, ST250 V3 XCC, VX3331 Certified Node XCC, HX Enclosure Certified Node XCC, HX1021 Edge Certified Node 3yr XCC, HX1320 Appliance XCC, HX1321 Certified Node XCC, HX1331 Certified Node XCC, HX1520-R Appliance XCC, HX1521-R Certified Node XCC, HX2320-E Appliance XCC, HX2321 Certified Node XCC, HX2330 Appliance XCC, HX2331 Certified Node XCC, HX2720-E Appliance XCC, HX3320 Appliance XCC, HX3321 Certified Node XCC, HX3330 Appliance XCC, HX3331 Certified Node XCC, HX3331 Node SAP HANA XCC, HX3375 Appliance XCC, HX3376 Certified Node XCC, HX3520-G Appliance XCC, HX3521-G Certified Node XCC, HX3720 Appliance XCC, HX3721 Certified Node XCC, HX5520 Appliance XCC, HX5520-C Appliance XCC, HX5521 Certified Node XCC, HX5521-C Certified Node XCC, HX5531 Certified Node XCC, HX7520 Appliance XCC, HX7521 Certified Node XCC, HX7530 Appl for SAP HANA XCC, HX7531 Certified Node XCC, HX7531 Node SAP HANA XCC, HX7820 Appliance XCC, HX7821 Certified Node XCC, MX Edge Appliance – MX1020 XCC, MX3330-F All-flash Appliance XCC and MX3330-. This affects an unknown part of the component System Management Mode. The manipulation leads to expired pointer dereference.

This vulnerability is uniquely identified as CVE-2024-45105. Attacking locally is a requirement. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-45105 | Lenovo HX5530 Appliance XCC System Management Mode expired pointer dereference

Post correlati

CVE-2024-21489 | uplot up to 1.6.30 uplot.assign prototype pollution (SNYK-JS-UPLOT-6209224)

CVE-2024-4495 | Tenda i21 1.0.0.14(4656) formWifiMacFilterGet index stack-based overflow

CVE-2024-25626 | Yocto Project poky up to 3.1.30/4.0.15/4.3.1 HTTP os command injection (GHSA-75xw-78mm-72r4)

CVE-2024-29926 | HasThemes WC Builder Plugin up to 1.0.18 on WordPress cross site scripting