Lenovo Thinkpad
6 CVEs affecting Lenovo Thinkpad. Latest disclosed: 2023-08-17. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2023-4030 | High | 8.4 | 2023-08-17 | A vulnerability was reported in BIOS for ThinkPad P14s Gen 2, P15s Gen 2, T14 Gen 2, and T15 Gen 2 that could cause the system to recover to insecure settings… |
CVE-2023-4029 | Medium | 6.7 | 2023-08-17 | A buffer overflow has been identified in the BoardUpdateAcpiDxe driver in some Lenovo ThinkPad products which may allow an attacker with local access and eleva… |
CVE-2023-2290 | Medium | 6.4 | 2023-06-26 | A potential vulnerability in the LenovoFlashDeviceInterface SMI handler may allow an attacker with local access and elevated privileges to execute arbitrary co… |
CVE-2019-6172 | Medium | 6.4 | 2019-11-12 | A potential vulnerability in the SMI callback function used in Legacy USB driver using passed parameter without sufficient checking in some Lenovo ThinkPad mod… |
CVE-2019-6170 | Medium | 6.4 | 2019-11-12 | A potential vulnerability in the SMI callback function used in the Legacy USB driver using boot services structure in runtime phase in some Lenovo ThinkPad mod… |
CVE-2020-8341 | | 2020-09-01 | In Lenovo systems, SMM BIOS Write Protection is used to prevent writes to SPI Flash. While this provides sufficient protection, an additional layer of protecti… |