Lenovo : Security Vulnerabilities, CVEs, Published In 2016 (Code Execution)
Lenovo BIOS EFI Driver allows local administrators to execute arbitrary code with System Management Mode (SMM) privileges via unspecified vectors.
Max CVSS
8.2
EPSS Score
0.04%
Published
2016-06-30
Updated
2019-09-27
Lenovo Solution Center (LSC) before 3.3.003 allows local users to execute arbitrary code with LocalSystem privileges via vectors involving the LSC.Services.SystemService StartProxy command with a named pipe created in advance and crafted .NET assembly.
Max CVSS
7.8
EPSS Score
0.04%
Published
2016-06-30
Updated
2016-07-01
UpdateAgent in Lenovo Accelerator Application allows man-in-the-middle attackers to execute arbitrary code by spoofing an update response from susapi.lenovomm.com.
Max CVSS
9.3
EPSS Score
0.10%
Published
2016-06-03
Updated
2016-06-07
3 vulnerabilities found