Unknown
CVE-2015-5684
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:
Add References:
CVE-2015-5684
MITRE ATT&CK
Collection
Command and Control
Credential Access
Defense Evasion
Discovery
Execution
Exfiltration
Impact
Initial Access
Lateral Movement
Persistence
Privilege Escalation
Topic Tags
Description
MITRE is populating this ID because it was assigned prior to Lenovo becoming a CNA. A buffer overflow vulnerability was reported, (fixed and publicly disclosed in 2015) in the Lenovo Service Engine (LSE), affecting various versions of BIOS for Lenovo Notebooks, that could allow a remote user to execute arbitrary code on the system.
Add Assessment
No one has assessed this topic. Be the first to add your voice to the community.
CVSS V3 Severity and Metrics
General Information
Vendors
Products
- b50-10 firmware,
- edge 15 firmware,
- flex 2 pro-15 firmware,
- flex 3-1120 firmware,
- flex 3-1470 firmware,
- flex 3-1570 firmware,
- g40-80 firmware,
- g40-80m firmware,
- g50-80 firmware,
- g50-80 touch firmware,
- g50-80 touch v3000 firmware,
- g50-80m firmware,
- g70-80 firmware,
- ideapad 100-14iby firmware,
- ideapad 100-15iby firmware,
- m40-35 firmware,
- s21e firmware,
- s41-70 firmware,
- s435 firmware,
- u31-70 firmware,
- u41-70 firmware,
- y40-80 firmware,
- yoga 3 11 firmware,
- yoga 3 14 firmware,
- z41-70 firmware,
- z51-70 firmware,
- z70-80 firmware
Weaknesses
References
Additional Info
Technical Analysis
Report as Emergent Threat Response
Report as Zero-day Exploit
Report as Exploited in the Wild
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:
