Lenovo Rackswitch G8296
Approved changes feed: RSS · Atom
cpe:2.3:h:lenovo:rackswitch_g8296:-:*:*:*:*:*:*:*
part: h version: - update: *
| Vendor | Lenovo (c98ed681-bc65-5c44-8bbb-e0a228f96d0e) |
|---|---|
| Product | Rackswitch G8296 (b47c9ddf-ab40-53e7-8c2c-cc0e817bb16b) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2020-8349 |
not_vulnerable | 2026-06-03 14:43:09.293123 |
Details available
CRITICAL (9.8)
An internal security review has identified an unauthenticated remote code execution vulnerability in Cloud Networking Operating System (CNOS)’ optional REST API management interface. This interface is disabled by default and not vulnerable unless enabled. When enabled, it is only vulnerable where attached to a VRF and as allowed by defined ACLs. Lenovo strongly recommends upgrading to a non-vulnerable CNOS release. Where not possible, Lenovo recommends disabling the REST API management interface or restricting access to the management VRF and further limiting access to authorized management stations via ACL.
Published: 2020-10-14T21:25:21.000Z
Updated: 2024-08-04T09:56:28.342Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2017-3765 |
not_vulnerable | 2026-06-03 14:37:16.140609 |
Details available
In Enterprise Networking Operating System (ENOS) in Lenovo and IBM RackSwitch and BladeCenter products, an authentication bypass known as "HP Backdoor" was discovered during a Lenovo security audit in the serial console, Telnet, SSH, and Web interfaces. This bypass mechanism can be accessed when performing local authentication under specific circumstances. If exploited, admin-level access to the switch is granted.
Published: 2018-01-10T18:00:00.000Z
Updated: 2024-09-17T01:10:39.100Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.