Vulnerabilities > Lenovo > Thinkserver Rd340 Firmware > High

DATE CVE VULNERABILITY TITLE RISK
2018-11-16 CVE-2018-9086 OS Command Injection vulnerability in Lenovo products
In some Lenovo ThinkServer-branded servers, a command injection vulnerability exists in the BMC firmware download command.
network
low complexity
lenovo CWE-78
7.2