CVE-2022-34884: Buffer Overflow
First published: Mon Jan 30 2023(Updated: )
A buffer overflow exists in the Remote Presence subsystem which can potentially allow valid, authenticated users to cause a recoverable subsystem denial of service.
Credit: psirt@lenovo.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Lenovo ThinkAgile VX3331 Firmware | <1.80_afbt20n | |
| Lenovo ThinkAgile VX3331 Firmware | ||
| Lenovo ThinkAgile HX Enclosure Firmware | <5.20_tei3c8m | |
| Lenovo ThinkAgile HX Enclosure Certified Node | ||
| Lenovo ThinkAgile HX1021 EDG Firmware | <3.60_tei386m | |
| Lenovo ThinkAgile HX1021 Firmware | ||
| Lenovo ThinkAgile HX1320 Firmware | <8.40-cdi394n | |
| Lenovo ThinkAgile HX1320 Firmware | ||
| Lenovo ThinkAgile HX1321 Firmware | <8.40-cdi394n | |
| Lenovo ThinkAgile HX1321 Firmware | ||
| Lenovo ThinkAgile HX1520-R Firmware | <8.40-cdi394n | |
| Lenovo ThinkAgile HX1520-R Firmware | ||
| Lenovo ThinkAgile HX1521-R | <8.40-cdi394n | |
| Lenovo ThinkAgile HX1521-R Firmware | ||
| Lenovo ThinkAgile HX2320-E Firmware | <8.40-cdi394n | |
| Lenovo ThinkAgile HX2320-E Firmware | ||
| lenovo thinkagile hx2321 firmware | <8.40-cdi394n | |
| Lenovo ThinkAgile HX2321 | ||
| Lenovo ThinkAgile HX2720-E Firmware | <5.20_tei3c8m | |
| Lenovo ThinkAgile HX2720-E Firmware | ||
| Lenovo ThinkAgile HX3320 Firmware | <8.40-cdi394n | |
| Lenovo ThinkAgile HX3320 Firmware | ||
| Lenovo ThinkAgile HX3321 Firmware | <8.40-cdi394n | |
| Lenovo ThinkAgile HX3321 Firmware | ||
| lenovo thinkagile hx3375 firmware | <4.10_d8bt38l | |
| Lenovo ThinkAgile HX3375 | ||
| Lenovo ThinkAgile HX3376 Firmware | <4.10_d8bt38l | |
| Lenovo ThinkAgile HX3376 Firmware | ||
| Lenovo ThinkAgile HX3520-G Firmware | <8.40-cdi394n | |
| Lenovo ThinkAgile HX3520-G | ||
| Lenovo ThinkAgile HX3521-G Firmware | <8.40-cdi394n | |
| Lenovo ThinkAgile HX3521-G Firmware | ||
| Lenovo ThinkAgile HX3720 Firmware | <5.20_tei3c8m | |
| Lenovo ThinkAgile HX3720 Firmware | ||
| Lenovo ThinkAgile HX3721 Firmware | <5.20_tei3c8m | |
| Lenovo ThinkAgile HX3721 Firmware | ||
| Lenovo ThinkAgile HX5520 Firmware | <8.40-cdi394n | |
| Lenovo ThinkAgile HX5520-C | ||
| Lenovo ThinkAgile HX5520-C Firmware | <8.40-cdi394n | |
| Lenovo ThinkAgile HX5520 | ||
| Lenovo ThinkAgile HX5521-C Firmware | <8.40-cdi394n | |
| Lenovo ThinkAgile HX5521 Firmware | ||
| Lenovo ThinkAgile HX5521 Firmware | <8.40-cdi394n | |
| Lenovo ThinkAgile HX5521 | ||
| lenovo thinkagile hx7520 firmware | <8.40-cdi394n | |
| Lenovo ThinkAgile HX7520 | ||
| Lenovo ThinkAgile HX7521 Firmware | <8.40-cdi394n | |
| Lenovo ThinkAgile HX7521 Firmware | ||
| Lenovo ThinkAgile HX7820 Firmware | <2.50_psi346l | |
| Lenovo ThinkAgile HX7820 Firmware | ||
| Lenovo ThinkAgile HX7821 Firmware | <2.50_psi346l | |
| Lenovo ThinkAgile HX7821 | ||
| Lenovo ThinkAgile MX Edge - MX1020 Firmware | <=3.60_tei386m | |
| Lenovo ThinkAgile MX Edge - MX1020 | ||
| Lenovo ThinkAgile MX3330-F Firmware | <1.80_afbt20n | |
| Lenovo ThinkAgile MX3330-F Firmware | ||
| Lenovo ThinkAgile MX3330-H Firmware | <1.80_afbt20n | |
| Lenovo ThinkAgile MX3330-H Firmware | ||
| Lenovo ThinkAgile MX3331-F Firmware | <1.80_afbt20n | |
| Lenovo ThinkAgile MX3331-F All-Flash | ||
| Lenovo ThinkAgile MX3331-H Firmware | <1.80_afbt20n | |
| Lenovo ThinkAgile MX3331-H Firmware | ||
| Lenovo ThinkAgile MX3530 F Firmware | <1.80_afbt20n | |
| Lenovo ThinkAgile MX3530 F Firmware | ||
| Lenovo ThinkAgile MX3530-H Firmware | <1.80_afbt20n | |
| Lenovo ThinkAgile MX3530-H Firmware | ||
| Lenovo ThinkAgile MX3531-F | <1.80_afbt20n | |
| Lenovo ThinkAgile MX3531-F All-Flash | ||
| Lenovo ThinkAgile MX3531 H Firmware | <1.80_afbt20n | |
| Lenovo ThinkAgile MX3531 H Hybrid | ||
| Lenovo ThinkAgile MX1021 on SE350 Firmware | <3.60_tei386m | |
| Lenovo ThinkAgile MX1021 on SE350 | ||
| Lenovo ThinkAgile VX 1SE Certified Node Firmware | <5.20_tei3c8m | |
| Lenovo ThinkAgile VX 1SE Certified Node Firmware | ||
| Lenovo ThinkAgile VX 2U4N Firmware | <5.20_tei3c8m | |
| Lenovo ThinkAgile VX 2U4N Firmware | ||
| Lenovo ThinkAgile VX 4U Firmware | <2.50_psi346l | |
| Lenovo ThinkAgile VX 4U Firmware | ||
| Lenovo ThinkAgile Vx1320 Firmware | <5.20_tei3c8m | |
| Lenovo ThinkAgile Vx1320 Firmware | ||
| Lenovo ThinkAgile Vx2320 Firmware | <8.40-cdi394n | |
| Lenovo ThinkAgile Vx2320 Firmware | ||
| Lenovo ThinkAgile VX2330 Firmware | <1.80_afbt20n | |
| Lenovo ThinkAgile VX2330 | ||
| Lenovo ThinkAgile Vx3320 Firmware | <8.40-cdi394n | |
| Lenovo ThinkAgile Vx3320 Firmware | ||
| Lenovo ThinkAgile VX3330 Firmware | <1.80_afbt20n | |
| Lenovo ThinkAgile VX3330 Firmware | ||
| Lenovo ThinkAgile Vx3520-G Firmware | <8.40-cdi394n | |
| Lenovo ThinkAgile Vx3520-G Firmware | ||
| lenovo thinkagile vx3530-g firmware | <1.80_afbt20n | |
| Lenovo ThinkAgile VX3530-G | ||
| Lenovo ThinkAgile VX3720 Firmware | <5.20_tei3c8m | |
| Lenovo ThinkAgile VX3720 Firmware | ||
| Lenovo ThinkAgile VX5520 Firmware | <8.40-cdi394n | |
| Lenovo ThinkAgile VX5520 Firmware | ||
| Lenovo ThinkAgile VX5530 Firmware | <1.80_afbt20n | |
| Lenovo ThinkAgile VX5530 Firmware | ||
| Lenovo ThinkAgile VX7320 N Firmware | <8.40-cdi394n | |
| Lenovo ThinkAgile VX7320 N | ||
| Lenovo ThinkAgile VX7330 Firmware | <1.80_afbt20n | |
| Lenovo ThinkAgile VX7330 Firmware | ||
| Lenovo ThinkAgile Vx7520 N Firmware | <8.40-cdi394n | |
| Lenovo ThinkAgile VX7520 | ||
| Lenovo ThinkAgile Vx7520 N Firmware | <8.40-cdi394n | |
| Lenovo ThinkAgile VX7520 | ||
| Lenovo ThinkAgile VX7530 | <1.80_afbt20n | |
| Lenovo ThinkAgile VX7530 | ||
| lenovo thinkagile vx7531 firmware | <1.80_afbt20n | |
| lenovo thinkagile vx7531 firmware | ||
| Lenovo ThinkAgile VX7820 Firmware | <2.50_psi346l | |
| Lenovo ThinkAgile VX7820 | ||
| Lenovo ThinkEdge SE450 | <1.10_usx304w | |
| Lenovo ThinkEdge SE450 Firmware | ||
| Lenovo ThinkStation P920 Firmware | <8.40-cdi394n | |
| Lenovo ThinkStation P920 | ||
| Lenovo ThinkSystem SD530 | <5.20_tei3c8m | |
| Lenovo ThinkSystem SD530 Firmware | ||
| Lenovo ThinkSystem SD630 V2 | <2.00_tgbt36o | |
| Lenovo ThinkSystem SD630 V2 Firmware | ||
| Lenovo ThinkSystem SD650 Firmware | <5.20_tei3c8m | |
| Lenovo ThinkSystem SD650 V2 | ||
| Lenovo ThinkSystem SD650-N V2 Firmware | <2.00_tgbt36o | |
| Lenovo ThinkSystem SD650 V2 Firmware | ||
| Lenovo ThinkSystem SD650-N V2 Firmware | <2.00_tgbt36o | |
| Lenovo ThinkSystem SD650-N V2 Firmware | ||
| Lenovo ThinkSystem SE350 Firmware | <3.60_tei386m | |
| Lenovo ThinkSystem SE350 | ||
| Lenovo ThinkSystem SN550 V2 Firmware | <5.20_tei3c8m | |
| Lenovo ThinkSystem SN550 Firmware | ||
| Lenovo ThinkSystem SN550 V2 Firmware | <2.00_tgbt36o | |
| Lenovo ThinkSystem SN550 V2 Firmware | ||
| lenovo thinksystem sn850 firmware | <5.20_tei3c8m | |
| Lenovo ThinkSystem SN850 | ||
| Lenovo ThinkSystem SR150 Firmware | <5.20_tei3c8m | |
| Lenovo ThinkSystem SR150 | ||
| Lenovo ThinkSystem SR158 Firmware | <5.20_tei3c8m | |
| Lenovo ThinkSystem SR158 Firmware | ||
| Lenovo ThinkSystem SR250 Firmware | <5.20_tei3c8m | |
| Lenovo ThinkSystem SR250 V2 | ||
| Lenovo ThinkSystem SR250 V2 Firmware | <1.96_tgbt34x | |
| Lenovo ThinkSystem SR250 V2 Firmware | ||
| Lenovo ThinkSystem SR258 Firmware | <5.20_tei3c8m | |
| Lenovo ThinkSystem SR258 V2 | ||
| lenovo thinksystem sr258 v2 firmware | <1.96_tgbt34x | |
| Lenovo ThinkSystem SR258 V2 | ||
| Lenovo ThinkSystem SR530 Firmware | <8.40-cdi394n | |
| Lenovo ThinkSystem SR530 | ||
| Lenovo ThinkSystem SR550 Firmware | <8.40-cdi394n | |
| Lenovo ThinkSystem SR550 | ||
| Lenovo ThinkSystem SR570 Firmware | <8.40-cdi394n | |
| Lenovo ThinkSystem SR570 | ||
| Lenovo ThinkSystem SR590 Firmware | <8.40-cdi394n | |
| Lenovo ThinkSystem SR590 | ||
| Lenovo ThinkSystem SR630 Firmware | <8.40-cdi394n | |
| Lenovo ThinkSystem SR630 Firmware | ||
| Lenovo ThinkSystem SR630 V2 | <1.80_afbt20n | |
| Lenovo ThinkSystem SR630 V2 Firmware | ||
| Lenovo ThinkSystem SR645 Firmware | <4.10_d8bt38l | |
| Lenovo ThinkSystem SR645 Firmware | ||
| Lenovo ThinkSystem SR650 Firmware | <8.40-cdi394n | |
| Lenovo ThinkSystem SR650 V2 | ||
| Lenovo ThinkSystem SR650 Firmware | <1.80_afbt20n | |
| Lenovo ThinkSystem SR650 V2 Firmware | ||
| Lenovo ThinkSystem SR665 Firmware | <4.10_d8bt38l | |
| Lenovo ThinkSystem SR665 | ||
| Lenovo ThinkSystem SR670 V2 | <3.60_tei386m | |
| Lenovo ThinkSystem SR670 V2 | ||
| Lenovo ThinkSystem SR670 V2 | <2.00_tgbt36o | |
| Lenovo ThinkSystem SR670 | ||
| Lenovo ThinkSystem SR850 V3 Firmware | <5.20_tei3c8m | |
| Lenovo ThinkSystem SR850P | ||
| Lenovo ThinkSystem SR850 V2 Firmware | <2.00_tgbt36o | |
| Lenovo ThinkSystem SR850 V2 Firmware | ||
| Lenovo ThinkSystem SR850P Firmware | <3.60_tei386m | |
| Lenovo ThinkSystem SR850P | ||
| Lenovo ThinkSystem SR860 Firmware | <5.20_tei3c8m | |
| Lenovo ThinkSystem SR860 Firmware | ||
| Lenovo ThinkSystem SR860 V2 Firmware | <2.00_tgbt36o | |
| Lenovo ThinkSystem SR860 V2 Firmware | ||
| Lenovo ThinkSystem SR950 Firmware | <2.50_psi346l | |
| Lenovo ThinkSystem SR950 Firmware | ||
| Lenovo ThinkSystem ST250 Firmware | <5.20_tei3c8m | |
| Lenovo ThinkSystem ST250 V2 | ||
| lenovo thinksystem st250 v2 firmware | <1.96_tgbt34x | |
| Lenovo ThinkSystem ST250 V2 | ||
| Lenovo ThinkSystem ST258 Firmware | <5.20_tei3c8m | |
| Lenovo ThinkSystem ST258 Firmware | ||
| Lenovo ThinkSystem ST258 Firmware | <1.96_tgbt34x | |
| Lenovo ThinkSystem ST258 Firmware | ||
| Lenovo ThinkSystem ST550 Firmware | <8.40-cdi394n | |
| Lenovo ThinkSystem ST550 Firmware | ||
| Lenovo ThinkSystem ST650 V2 | <2.00_tgbt36o | |
| Lenovo ThinkSystem ST650 V2 Firmware | ||
| Lenovo ThinkSystem ST658 V2 | <2.00_tgbt36o | |
| Lenovo ThinkSystem ST658 V2 Firmware |
Remedy
Update to the Lenovo XClarity Controller (XCC) version (or higher) as recommended in the Product Impact section in LEN-87734.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2022-34884?
The severity of CVE-2022-34884 is classified as high due to the potential for a denial of service.
How do I fix CVE-2022-34884?
To fix CVE-2022-34884, update the affected Lenovo firmware to a version later than 1.80_afbt20n or 5.20_tei3c8m.
What products are affected by CVE-2022-34884?
CVE-2022-34884 affects various Lenovo ThinkAgile firmware versions, particularly those prior to 1.80_afbt20n or 5.20_tei3c8m.
What type of vulnerability is CVE-2022-34884?
CVE-2022-34884 is a buffer overflow vulnerability in the Remote Presence subsystem.
Can authenticated users exploit CVE-2022-34884?
Yes, valid authenticated users could potentially exploit CVE-2022-34884 to cause a recoverable denial of service.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/author
- agent/last-modified-date
- agent/severity
- agent/remedy
- agent/references
- agent/event
- agent/description
- agent/first-publish-date
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/lenovo
- canonical/lenovo thinkagile vx3331 firmware
- canonical/lenovo thinkagile hx enclosure firmware
- canonical/lenovo thinkagile hx enclosure certified node
- canonical/lenovo thinkagile hx1021 edg firmware
- canonical/lenovo thinkagile hx1021 firmware
- canonical/lenovo thinkagile hx1320 firmware
- canonical/lenovo thinkagile hx1321 firmware
- canonical/lenovo thinkagile hx1520-r firmware
- canonical/lenovo thinkagile hx1521-r
- canonical/lenovo thinkagile hx1521-r firmware
- canonical/lenovo thinkagile hx2320-e firmware
- canonical/lenovo thinkagile hx2321 firmware
- canonical/lenovo thinkagile hx2321
- canonical/lenovo thinkagile hx2720-e firmware
- canonical/lenovo thinkagile hx3320 firmware
- canonical/lenovo thinkagile hx3321 firmware
- canonical/lenovo thinkagile hx3375 firmware
- canonical/lenovo thinkagile hx3375
- canonical/lenovo thinkagile hx3376 firmware
- canonical/lenovo thinkagile hx3520-g firmware
- canonical/lenovo thinkagile hx3520-g
- canonical/lenovo thinkagile hx3521-g firmware
- canonical/lenovo thinkagile hx3720 firmware
- canonical/lenovo thinkagile hx3721 firmware
- canonical/lenovo thinkagile hx5520 firmware
- canonical/lenovo thinkagile hx5520-c
- canonical/lenovo thinkagile hx5520-c firmware
- canonical/lenovo thinkagile hx5520
- canonical/lenovo thinkagile hx5521-c firmware
- canonical/lenovo thinkagile hx5521 firmware
- canonical/lenovo thinkagile hx5521
- canonical/lenovo thinkagile hx7520 firmware
- canonical/lenovo thinkagile hx7520
- canonical/lenovo thinkagile hx7521 firmware
- canonical/lenovo thinkagile hx7820 firmware
- canonical/lenovo thinkagile hx7821 firmware
- canonical/lenovo thinkagile hx7821
- canonical/lenovo thinkagile mx edge - mx1020 firmware
- version/lenovo thinkagile mx edge - mx1020 firmware/3.60_tei386m
- canonical/lenovo thinkagile mx edge - mx1020
- canonical/lenovo thinkagile mx3330-f firmware
- canonical/lenovo thinkagile mx3330-h firmware
- canonical/lenovo thinkagile mx3331-f firmware
- canonical/lenovo thinkagile mx3331-f all-flash
- canonical/lenovo thinkagile mx3331-h firmware
- canonical/lenovo thinkagile mx3530 f firmware
- canonical/lenovo thinkagile mx3530-h firmware
- canonical/lenovo thinkagile mx3531-f
- canonical/lenovo thinkagile mx3531-f all-flash
- canonical/lenovo thinkagile mx3531 h firmware
- canonical/lenovo thinkagile mx3531 h hybrid
- canonical/lenovo thinkagile mx1021 on se350 firmware
- canonical/lenovo thinkagile mx1021 on se350
- canonical/lenovo thinkagile vx 1se certified node firmware
- canonical/lenovo thinkagile vx 2u4n firmware
- canonical/lenovo thinkagile vx 4u firmware
- canonical/lenovo thinkagile vx1320 firmware
- canonical/lenovo thinkagile vx2320 firmware
- canonical/lenovo thinkagile vx2330 firmware
- canonical/lenovo thinkagile vx2330
- canonical/lenovo thinkagile vx3320 firmware
- canonical/lenovo thinkagile vx3330 firmware
- canonical/lenovo thinkagile vx3520-g firmware
- canonical/lenovo thinkagile vx3530-g firmware
- canonical/lenovo thinkagile vx3530-g
- canonical/lenovo thinkagile vx3720 firmware
- canonical/lenovo thinkagile vx5520 firmware
- canonical/lenovo thinkagile vx5530 firmware
- canonical/lenovo thinkagile vx7320 n firmware
- canonical/lenovo thinkagile vx7320 n
- canonical/lenovo thinkagile vx7330 firmware
- canonical/lenovo thinkagile vx7520 n firmware
- canonical/lenovo thinkagile vx7520
- canonical/lenovo thinkagile vx7530
- canonical/lenovo thinkagile vx7531 firmware
- canonical/lenovo thinkagile vx7820 firmware
- canonical/lenovo thinkagile vx7820
- canonical/lenovo thinkedge se450
- canonical/lenovo thinkedge se450 firmware
- canonical/lenovo thinkstation p920 firmware
- canonical/lenovo thinkstation p920
- canonical/lenovo thinksystem sd530
- canonical/lenovo thinksystem sd530 firmware
- canonical/lenovo thinksystem sd630 v2
- canonical/lenovo thinksystem sd630 v2 firmware
- canonical/lenovo thinksystem sd650 firmware
- canonical/lenovo thinksystem sd650 v2
- canonical/lenovo thinksystem sd650-n v2 firmware
- canonical/lenovo thinksystem sd650 v2 firmware
- canonical/lenovo thinksystem se350 firmware
- canonical/lenovo thinksystem se350
- canonical/lenovo thinksystem sn550 v2 firmware
- canonical/lenovo thinksystem sn550 firmware
- canonical/lenovo thinksystem sn850 firmware
- canonical/lenovo thinksystem sn850
- canonical/lenovo thinksystem sr150 firmware
- canonical/lenovo thinksystem sr150
- canonical/lenovo thinksystem sr158 firmware
- canonical/lenovo thinksystem sr250 firmware
- canonical/lenovo thinksystem sr250 v2
- canonical/lenovo thinksystem sr250 v2 firmware
- canonical/lenovo thinksystem sr258 firmware
- canonical/lenovo thinksystem sr258 v2
- canonical/lenovo thinksystem sr258 v2 firmware
- canonical/lenovo thinksystem sr530 firmware
- canonical/lenovo thinksystem sr530
- canonical/lenovo thinksystem sr550 firmware
- canonical/lenovo thinksystem sr550
- canonical/lenovo thinksystem sr570 firmware
- canonical/lenovo thinksystem sr570
- canonical/lenovo thinksystem sr590 firmware
- canonical/lenovo thinksystem sr590
- canonical/lenovo thinksystem sr630 firmware
- canonical/lenovo thinksystem sr630 v2
- canonical/lenovo thinksystem sr630 v2 firmware
- canonical/lenovo thinksystem sr645 firmware
- canonical/lenovo thinksystem sr650 firmware
- canonical/lenovo thinksystem sr650 v2
- canonical/lenovo thinksystem sr650 v2 firmware
- canonical/lenovo thinksystem sr665 firmware
- canonical/lenovo thinksystem sr665
- canonical/lenovo thinksystem sr670 v2
- canonical/lenovo thinksystem sr670
- canonical/lenovo thinksystem sr850 v3 firmware
- canonical/lenovo thinksystem sr850p
- canonical/lenovo thinksystem sr850 v2 firmware
- canonical/lenovo thinksystem sr850p firmware
- canonical/lenovo thinksystem sr860 firmware
- canonical/lenovo thinksystem sr860 v2 firmware
- canonical/lenovo thinksystem sr950 firmware
- canonical/lenovo thinksystem st250 firmware
- canonical/lenovo thinksystem st250 v2
- canonical/lenovo thinksystem st250 v2 firmware
- canonical/lenovo thinksystem st258 firmware
- canonical/lenovo thinksystem st550 firmware
- canonical/lenovo thinksystem st650 v2
- canonical/lenovo thinksystem st650 v2 firmware
- canonical/lenovo thinksystem st658 v2
- canonical/lenovo thinksystem st658 v2 firmware