CVE-2019-6157

Summary

In various firmware versions of Lenovo System x, the integrated management module II (IMM2)'s first failure data capture (FFDC) includes the web server's private key in the generated log file for support.

Affected Software

VendorProductVersion RangeStatus
LenovoSystem xvariousaffected

Weaknesses

  • Information disclosure

ADP Enrichment

CVE Program Container

Additional References

References