Show filters
5 Total Results
Displaying 1-5 of 5
Sort by:
Attacker Value
Unknown
CVE-2021-3599
Disclosure Date: November 12, 2021 (last updated October 07, 2023)
A potential vulnerability in the SMI callback function used to access flash device in some ThinkPad models may allow an attacker with local access and elevated privileges to execute arbitrary code.
1
Attacker Value
Unknown
CVE-2022-4575
Disclosure Date: October 30, 2023 (last updated November 08, 2023)
A vulnerability due to improper write protection of UEFI variables was reported in the BIOS of some ThinkPad models could allow an attacker with physical or local access and elevated privileges the ability to bypass Secure Boot.
0
Attacker Value
Unknown
CVE-2022-40134
Disclosure Date: January 30, 2023 (last updated October 08, 2023)
An information leak vulnerability in the SMI Set BIOS Password SMI Handler in some Lenovo models may allow an attacker with local access and elevated privileges to read SMM memory.
0
Attacker Value
Unknown
CVE-2021-3786
Disclosure Date: November 12, 2021 (last updated October 07, 2023)
A potential vulnerability in the SMI callback function used in CSME configuration of some Lenovo Notebook and ThinkPad systems could be used to leak out data out of the SMRAM range.
0
Attacker Value
Unknown
CVE-2020-8336
Disclosure Date: June 09, 2020 (last updated November 28, 2024)
Lenovo implemented Intel CSME Anti-rollback ARB protections on some ThinkPad models to prevent roll back of CSME Firmware in flash.
0