HomeLenovoCVE-2024-2659

CVE-2024-2659

HIGH
7.2CVSS
Published: 2024-04-15
Updated: 2025-07-28
AI Analysis

Description

A command injection vulnerability was identified in SMM/SMM2 and FPC that could allow an authenticated user with elevated privileges to execute system commands when performing a specific administrative function.

CVSS Metrics

Vector
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Attack Vector
network
Complexity
low
Privileges
high
User Action
none
Scope
unchanged
Confidentiality
high
Integrity
high
Availability
high
Weaknesses
CWE-78

Metadata

Primary Vendor
LENOVO
Published
4/15/2024
Last Modified
7/28/2025
Source
NIST NVD
Note: Verify all details with official vendor sources before applying patches.

Affected Products

lenovo : nextscale_n1200_enclosure_firmwarelenovo : thinkagile_cp-cb-10_firmwarelenovo : thinkagile_cp-cb-10e_firmwarelenovo : thinkagile_hx_enclosure_firmwarelenovo : thinkagile_hx3721_firmwarelenovo : thinkagile_hx1021_firmwarelenovo : thinkagile_hx_e1_enclosure_firmwarelenovo : thinkagile_hx_e2_enclosure_firmwarelenovo : thinkagile_hx1321_firmwarelenovo : thinkagile_hx2321_firmwarelenovo : thinkagile_hx3321_firmwarelenovo : thinkagile_hx1331_firmwarelenovo : thinkagile_hx2331_firmwarelenovo : thinkagile_hx3331_firmwarelenovo : thinkagile_hx630_v3_firmwarelenovo : thinkagile_hx3376_firmwarelenovo : thinkagile_hx645_v3_firmwarelenovo : thinkagile_hx1521-r_firmwarelenovo : thinkagile_hx3521-g_firmwarelenovo : thinkagile_hx5521_firmwarelenovo : thinkagile_hx5521-c_firmwarelenovo : thinkagile_hx7521_firmwarelenovo : thinkagile_hx5531_firmwarelenovo : thinkagile_hx7531_firmwarelenovo : thinkagile_hx650_v3_firmwarelenovo : thinkagile_hx665_v3_firmwarelenovo : thinkagile_hx7821_firmwarelenovo : thinkagile_vx3720_firmwarelenovo : thinkagile_2u4n_firmwarelenovo : thinkagile_vx1320_firmwarelenovo : thinkagile_vx_1se_firmwarelenovo : thinkagile_vx3320_firmwarelenovo : thinkagile_vx2320_firmwarelenovo : thinkagile_vx7320-n_firmwarelenovo : thinkagile_vx_1u_firmwarelenovo : thinkagile_vx2330_firmwarelenovo : thinkagile_vx3330_firmwarelenovo : thinkagile_vx7330-n_firmwarelenovo : thinkagile_vx3331_firmwarelenovo : thinkagile_vx630_v3_firmwarelenovo : thinkagile_vx630_v4_firmwarelenovo : thinkagile_vx635_v3_firmwarelenovo : thinkagile_vx2375_firmwarelenovo : thinkagile_vx3375_firmwarelenovo : thinkagile_vx7375-n_firmwarelenovo : thinkagile_vx3376_firmwarelenovo : thinkagile_vx645_v3_firmwarelenovo : thinkagile_vx5520_firmwarelenovo : thinkagile_vx7520_firmwarelenovo : thinkagile_vx3520-g_firmwarelenovo : thinkagile_vx5520_firmwarelenovo : thinkagile_vx_2u_firmwarelenovo : thinkagile_vx3530-g_firmwarelenovo : thinkagile_vx5530_firmwarelenovo : thinkagile_vx7530_firmwarelenovo : thinkagile_vx7531_firmwarelenovo : thinkagile_vx650_v3_firmwarelenovo : thinkagile_vx650_v4_firmwarelenovo : thinkagile_vx655_v3_firmwarelenovo : thinkagile_vx5575_firmwarelenovo : thinkagile_vx7575_firmwarelenovo : thinkagile_vx3575-g_firmwarelenovo : thinkagile_vx665_v3_firmwarelenovo : thinkagile_vx850_v3_firmwarelenovo : thinkagile_vx_4u_firmwarelenovo : thinkagile_vx7820_firmwarelenovo : thinksystem_d2_enclosure_firmwarelenovo : thinksystem_da240_firmwarelenovo : thinksystem_dw612_firmware

AI-Powered Remediation

Generate remediation guidance or a C-suite brief for this vulnerability.

Executive Intelligence Brief

View on NIST NVD
CVE-CVE-2024-2659 | HIGH Severity | CVEDatabase.com | CVEDatabase.com