What is CVE-2024-23591?

CVE-2024-23591 is a low-severity vulnerability in Lenovo Thinksystem Sr670 V2, classified under CWE-1269. CVSS score: 2.0/10. Published 2024-02-16.

How severe is CVE-2024-23591?

Low severity. CVSS v3 base score is 2.0 out of 10.

Vulnerability in Lenovo Thinksystem Sr670 V2

CVE-2024-23591

ThinkSystem SR670V2 servers manufactured from approximately June 2021 to July 2023 were left in Manufacturing Mode which could allow an attacker with privileged logical access to the host or physical access to server internals to modify…

EPSS: 0.000 (10.5th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 2.0 (Low). Vector: CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N.

Affected products

Lenovo Thinksystem Sr670 V2 — versions 0

Weakness classification (CWE)

CWE-1269

References

support.lenovo.com/us/en/product_security/LEN-150020

Frequently asked questions

What is CVE-2024-23591?: CVE-2024-23591 is a low-severity vulnerability in Lenovo Thinksystem Sr670 V2, classified under CWE-1269. CVSS score: 2.0/10. Published 2024-02-16.
How severe is CVE-2024-23591?: Low severity. CVSS v3 base score is 2.0 out of 10.