Denial of Service Vulnerability in Legacy IBM System x and BladeCenter Products
CVE-2019-6155

4.1MEDIUM

Key Information:

Vendor: IBM
Status: System X BiOS; Bladecenter BiOS
Vendor: CVE Published:; 18 April 2019

Summary

A potential vulnerability exists within the SMI handler of various BIOS versions in certain legacy IBM System x and IBM BladeCenter systems. This flaw could be exploited to induce a denial of service, potentially interrupting system operations and affecting overall performance. It is critical to ensure that systems are updated and monitored to mitigate any risks associated with this vulnerability.

Affected Version(s)

BladeCenter BIOS various

System x BIOS various

References

https://support.lenovo.com/solutions/LEN-25165

x_refsource_MISC

CVSS V3.1

Score:

4.1

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Apr 18, 2019
Vulnerability Reserved
Jan 11, 2019