HOMEVULNERABILITIESCVE-2017-3765
HIGH

CVE-2017-3765

CWE-287Published: January 10, 2018· Updated: Jun 17, 2026

7.0
CVSS v3.1

Official Description

In Enterprise Networking Operating System (ENOS) in Lenovo and IBM RackSwitch and BladeCenter products, an authentication bypass known as "HP Backdoor" was discovered during a Lenovo security audit in the serial console, Telnet, SSH, and Web interfaces. This bypass mechanism can be accessed when performing local authentication under specific circumstances. If exploited, admin-level access to the switch is granted.

NVD Source

Technical Analysis

CVE-2017-3765 requires local access, meaning attackers must already have a foothold on the target system.

Exploitation requires low privileges, which limits the exposure to scenarios where an attacker has already gained initial access.

A successful exploit results in complete confidentiality breach (data exposure), full integrity compromise (data manipulation), availability disruption (denial of service), with a CVSS base score of 7.0.

From a weakness classification perspective (CWE-287): Authentication bypass vulnerabilities allow attackers to access protected resources without valid credentials.

CVSS v3.1 Vector Breakdown

Exploitability
Attack VectorLocal
Attack ComplexityHigh
Privileges Req.Low
User InteractionNone
ScopeUnchanged
Impact
ConfidentialityHigh
IntegrityHigh
AvailabilityHigh
CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected Vendors & Products

IBM16 product(s)
1g l2-7 slb switch for bladecenterbladecenter 1\bladecenter layer 2\/3 copper ethernet switch modulebladecenter virtual fabric 10gb switch moduleflex system en2092 1gb ethernet scalable switchflex system fabric cn4093 10gb converged scalable switchflex system fabric en4093\/en4093r 10gb scalable switchflex system fabric si4093 10gb system interconnect modulerackswitch g8052rackswitch g8124rackswitch g8124erackswitch g8264+4
Lenovo14 product(s)
enterprise network operating systemflex system fabric cn4093 10gb converged scalable switchflex system fabric en4093r 10gb scalable switchflex system fabric si4093 10gb system interconnect moduleflex system si4091 system interconnect modulerackswitch g7028rackswitch g7052rackswitch g8052rackswitch g8124erackswitch g8264rackswitch g8264csrackswitch g8272+2
Source: NVD CPE · 30 total CPE entries

Exploit & PoC Resources

NO KNOWN EXPLOITNo public exploit confirmed at this time
External links open in a new tab. Always verify in a controlled environment before use.

Official Patches & Advisories

All References (4)

Quick Facts

CVE IDCVE-2017-3765
CVSS Score7.0 / 10
SeverityHIGH
WeaknessCWE-287
CISA KEVNo
Affected2 vendor(s)
PublishedJan 10, 2018

Related CVEs (CWE-287)

Recommended Actions

  • Apply vendor patches immediately
  • Monitor CVE-2017-3765 in threat intel feeds
  • Review IDS/IPS signatures for exploitation attempts
Data sourced from NVD (NIST), CISA KEV, and EPSS (FIRST). Analysis generated by CTIWATCH.COM. CVE data is provided under the NVD usage policy.