CVE-2021-3723

Name of the Vulnerable Software and Affected Versions IBM System x 3550 M3 (affected versions not specified) IBM System x 3650 M3 (affected versions not specified)

Description A command injection issue was found in the Integrated Management Module (IMM) that could allow the execution of operating system commands over an authenticated SSH or Telnet session. This is due to the lack of neutralization of special elements used in the operating system command. Exploitation of this issue may allow a remote attacker to execute arbitrary operating system commands.

Recommendations For IBM System x 3550 M3, at the moment, there is no information about a newer version that contains a fix for this issue. For IBM System x 3650 M3, at the moment, there is no information about a newer version that contains a fix for this issue.