Vulnerabilities > CVE-2021-3473 - Cleartext Storage of Sensitive Information vulnerability in Lenovo Xclarity Controller

CVSS 4.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

SINGLE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

network

low complexity

lenovo

CWE-312

NVD

Published: 2021-04-13

Updated: 2021-04-23

Summary

An internal product security audit of Lenovo XClarity Controller (XCC) discovered that the XCC configuration backup/restore password may be written to an internal XCC log buffer if Lenovo XClarity Administrator (LXCA) is used to perform the backup/restore. The backup/restore password typically exists in this internal log buffer for less than 10 minutes before being overwritten. Generating an FFDC service log will include the log buffer contents, including the backup/restore password if present. The FFDC service log is only generated when requested by a privileged XCC user and it is only accessible to the privileged XCC user that requested the file. The backup/restore password is not captured if the backup/restore is initiated directly from XCC.

Vulnerable Configurations

Part	Description	Count
Application	Lenovo Lenovo Xclarity Controller 6.00_Cdi370Q Lenovo Xclarity Controller 1.10_Tgbt12Q Lenovo Xclarity Controller 2.14_Psi338I Lenovo Xclarity Controller 4.40_Tei3B2P	4
Hardware	Lenovo Lenovo Thinkagile Hx1320 - Lenovo Thinkagile Hx2320 - Lenovo Thinkagile Hx3320 - Lenovo Thinkagile Hx3375 - Lenovo Thinkagile Hx3520 G - Lenovo Thinkagile Hx3720 - Lenovo Thinkagile Hx5520 - Lenovo Thinkagile Hx7520 - Lenovo Thinkagile Hx7820 - Lenovo Thinkagile MX Certified Nodes - Lenovo Thinkagile VX 1U - Lenovo Thinkagile VX 2U - Lenovo Thinkagile VX Dense - Lenovo Thinksystem Sr530 - Lenovo Thinksystem Sr570 - Lenovo Thinksystem Sr590 - Lenovo Thinksystem Sr630 - Lenovo Thinksystem Sr650 - Lenovo Thinksystem St550 - Lenovo Thinksystem St558 - Lenovo Thinkagile Mx1020 - Lenovo Thinksystem Se350 - Lenovo Thinksystem Sr670 - Lenovo Thinksystem Sr850P - Lenovo Thinksystem Sr950 - Lenovo Thinksystem Sd530 - Lenovo Thinksystem Sd650 - Lenovo Thinksystem Sn550 - Lenovo Thinksystem Sn850 - Lenovo Thinksystem Sr150 - Lenovo Thinksystem Sr158 - Lenovo Thinksystem Sr250 - Lenovo Thinksystem Sr258 - Lenovo Thinksystem Sr850 - Lenovo Thinksystem Sr860 - Lenovo Thinksystem St250 - Lenovo Thinksystem St258 -	37

Common Weakness Enumeration (CWE)

CWE-312 - Cleartext Storage of Sensitive Information

Common Attack Pattern Enumeration and Classification (CAPEC)

Footprinting
An attacker engages in probing and exploration activity to identify constituents and properties of the target. Footprinting is a general term to describe a variety of information gathering techniques, often used by attackers in preparation for some attack. It consists of using tools to learn as much as possible about the composition, configuration, and security mechanisms of the targeted application, system or network. Information that might be collected during a footprinting effort could include open ports, applications and their versions, network topology, and similar information. While footprinting is not intended to be damaging (although certain activities, such as network scans, can sometimes cause disruptions to vulnerable applications inadvertently) it may often pave the way for more damaging attacks.
Lifting Data Embedded in Client Distributions
An attacker can resort to stealing data embedded in client distributions or client code in order to gain certain information. This information can reveal confidential contents, such as account numbers, or can be used as an intermediate step in a larger attack (such as by stealing keys/credentials).

References

https://support.lenovo.com/us/en/product_security/LEN-52117