High severity7.0NVD Advisory· Published Jan 10, 2018· Updated Jun 17, 2026
CVE-2017-3765
CVE-2017-3765
Description
In Enterprise Networking Operating System (ENOS) in Lenovo and IBM RackSwitch and BladeCenter products, an authentication bypass known as "HP Backdoor" was discovered during a Lenovo security audit in the serial console, Telnet, SSH, and Web interfaces. This bypass mechanism can be accessed when performing local authentication under specific circumstances. If exploited, admin-level access to the switch is granted.
Affected products
1- Lenovo Group Ltd./Enterprise Network Operating System affecting Lenovo and IBM RackSwitch and BladeCenter Productsv5Range: Earlier than
Patches
Vulnerability mechanics
References
2- support.lenovo.com/us/en/product_security/LEN-16095nvdMitigationPatchVendor Advisory
- www.securitytracker.com/id/1040296nvdThird Party Advisory
News mentions
0No linked articles in our index yet.