A write protection lock bit was left unset after boot on an older generation of Lenovo and IBM System x servers, potentially allowing an attacker with administrator access to modify the subset of flash memory containing Intel Server Platform Services (SPS) and the system Flash Descriptors.
Threat-Mapped Scoring
Score: 0.0
Priority: Unclassified
EPSS
Score: 0.00137Percentile:
0.34449
CVSS Scoring
CVSS v3.0 Score: 4.9
Severity: MEDIUM
Mapped CWE(s)
CWE-276
: Incorrect Default Permissions
All CAPEC(s)
CAPEC-1 : Accessing Functionality Not Properly Constrained by ACLs
CAPEC-127 : Directory Indexing
CAPEC-81 : Web Server Logs Tampering
CAPEC(s) with Mapped TTPs
CAPEC-1 : Accessing Functionality Not Properly Constrained by ACLs
Mapped TTPs:
T1574.010
: Services File Permissions Weakness
CAPEC-127 : Directory Indexing
Mapped TTPs:
T1083
: File and Directory Discovery
Mapped ATT&CK TTPs
T1574.010
: Services File Permissions Weakness
Kill Chain: persistence
T1083
: File and Directory Discovery
Kill Chain: discovery
Malware
APTs Threat Group Associations
Campaigns
Operation Wocao SolarWinds Compromise Operation CuckooBees Operation Honeybee Operation Dream Job C0015 Night Dragon KV Botnet Activity
Affected Products
cpe:2.3:o:lenovo:flex_system_x240_m4_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:lenovo:flex_system_x440_m4_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:lenovo:system_x3750_m4_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:ibm:bladecenter_hs23_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:ibm:bladecenter_hs23e_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:ibm:flex_system_x220_m4_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:ibm:flex_system_x222_m4_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:ibm:flex_system_x240_m4_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:ibm:flex_system_x280_x6_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:ibm:flex_system_x440_m4_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:ibm:flex_system_x480_x6_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:ibm:flex_system_x880_x6_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:ibm:idataplex_dx360_m4_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:ibm:idataplex_dx360_m4_water_cooled_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:ibm:system_x3100_m4_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:ibm:system_x3100_m5_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:ibm:system_x3250_m4_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:ibm:system_x3250_m5_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:ibm:system_x3300_m4_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:ibm:system_x3500_m4_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:ibm:system_x3530_m4_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:ibm:system_x3550_m4_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:ibm:system_x3630_m4_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:ibm:system_x3650_m4_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:ibm:system_x3650_m4_bd_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:ibm:system_x3650_m4_hd_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:ibm:system_x3750_m4_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:ibm:system_x3850_x6_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:ibm:system_x3950_x6_firmware:*:*:*:*:*:*:*:*
← Back to Home
BrownCoat Threat Intelligence Platform | 2025 Steve Gray — You Can’t Take the Sky from Me