Unrated severityNVD Advisory· Published Apr 16, 2015· Updated Jun 17, 2026
CVE-2015-3322
CVE-2015-3322
Description
Lenovo ThinkServer RD350, RD450, RD550, RD650, and TD350 servers before 1.26.0 use weak encryption to store (1) user and (2) administrator BIOS passwords, which allows attackers to decrypt the passwords via unspecified vectors.
Affected products
11cpe:2.3:h:lenovo:thinkserver_rd350:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:h:lenovo:thinkserver_rd350:*:*:*:*:*:*:*:*
- cpe:2.3:o:lenovo:thinkserver_rd350_firmware:*:*:*:*:*:*:*:*range: <=1.25.0
- cpe:2.3:h:lenovo:thinkserver_rd450:*:*:*:*:*:*:*:*
cpe:2.3:h:lenovo:thinkserver_rd550:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:h:lenovo:thinkserver_rd550:*:*:*:*:*:*:*:*
- cpe:2.3:o:lenovo:thinkserver_rd550_firmware:*:*:*:*:*:*:*:*range: <=1.25.0
- cpe:2.3:h:lenovo:thinkserver_rd650:*:*:*:*:*:*:*:*
- cpe:2.3:h:lenovo:thinkserver_td350:*:*:*:*:*:*:*:*
- cpe:2.3:o:lenovo:thinkserver_rd450_firmware:*:*:*:*:*:*:*:*Range: <=1.25.0
- cpe:2.3:o:lenovo:thinkserver_rd650_firmware:*:*:*:*:*:*:*:*Range: <=1.25.0
- cpe:2.3:o:lenovo:thinkserver_td350_firmware:*:*:*:*:*:*:*:*Range: <=1.25.0
- Range: <1.26.0
Patches
Vulnerability mechanics
References
2- support.lenovo.com/us/en/product_security/ts_bios_pwnvdPatchVendor Advisory
- www.securityfocus.com/bid/74198nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.