Intel BMC Vulnerabilities​ - Lenovo Support US

Lenovo Security Advisory: LEN-29773

Potential Impact: Escalation of Privilege, Denial of Service and/or Information Disclosure

Severity: Critical

Scope of Impact: Industry-wide

CVE Identifier: CVE-2019-11168, CVE-2019-11170, CVE-2019-11171, CVE-2019-11172, CVE-2019-11173, CVE-2019-11174, CVE-2019-11175, CVE-2019-11177, CVE-2019-11178, CVE-2019-11179, CVE-2019-11180, CVE-2019-11181, CVE-2019-11182​

Summary Description:

Intel reported potential security vulnerabilities in Intel® Baseboard Management Controller (BMC) firmware may allow escalation of privilege, denial of service and/or information disclosure. ​

Mitigation Strategy for Customers (what you should do to protect yourself):

Intel recommends upgrading to the firmware version (or newer) indicated for your model in the Product Impact section below.​