Lenovo Security Advisory: LEN-24799
Potential Impact: Privilege escalation, information disclosure, denial of service
Severity: High
Scope of Impact: Industry-wide
CVE Identifier: CVE-2018-12173
Summary Description:
Intel has notified Lenovo of a potential security vulnerability in Intelยฎ Server Board firmware may allow escalation of privilege, denial of service, and/or information disclosure.
Mitigation Strategy for Customers (what you should do to protect yourself):
Intel recommends upgrading to the firmware version (or newer) indicated for your model in the Product Impact section below.