CVE-2022-40135 : An information leak vulnerability in the Smart USB Protection SMI Handler in som

An information leak vulnerability in the Smart USB Protection SMI Handler in some Lenovo models may allow an attacker with local access and elevated privileges to read SMM memory.

Published 2023-01-30 22:15:12

Updated 2023-02-14 14:28:35

Source Lenovo Group Ltd.

View at NVD, CVE.org

Products affected by CVE-2022-40135

Lenovo » Thinkcentre E75 T/s Firmware
Versions before (<) m16kt68a
cpe:2.3:o:lenovo:thinkcentre_e75_t\/s_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkcentre E75 T/s » Version: N/A
Lenovo » Thinkcentre M610 Firmware
Versions before (<) m1akt56a
cpe:2.3:o:lenovo:thinkcentre_m610_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkcentre M610 » Version: N/A
Lenovo » Thinkcentre M6600q Firmware
Versions before (<) fwktbaa
cpe:2.3:o:lenovo:thinkcentre_m6600q_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkcentre M6600q » Version: N/A
Lenovo » Thinkcentre M715q Firmware
Versions before (<) m11kt54a
cpe:2.3:o:lenovo:thinkcentre_m715q_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkcentre M715q » Version: N/A
Lenovo » Thinkcentre M910q Firmware
Versions before (<) m1akt56a
cpe:2.3:o:lenovo:thinkcentre_m910q_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkcentre M910q » Version: N/A
Lenovo » Thinkcentre M910x Firmware
Versions before (<) m1akt56a
cpe:2.3:o:lenovo:thinkcentre_m910x_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkcentre M910x » Version: N/A
Lenovo » Yangtian Afq150 Firmware
Versions before (<) fwktbaa
cpe:2.3:o:lenovo:yangtian_afq150_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Yangtian Afq150 » Version: N/A
Lenovo » Thinkcentre M810z Firmware
Versions before (<) m1ckt49a
cpe:2.3:o:lenovo:thinkcentre_m810z_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkcentre M810z » Version: N/A
Lenovo » Thinkstation P310 Firmware
Versions before (<) fwktbaa
cpe:2.3:o:lenovo:thinkstation_p310_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkstation P310 » Version: N/A
Lenovo » Qt M410 Firmware
Versions before (<) m16kt68a
cpe:2.3:o:lenovo:qt_m410_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Qt M410 » Version: N/A
Lenovo » Qt B415 Firmware
Versions before (<) m16kt68a
cpe:2.3:o:lenovo:qt_b415_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Qt B415 » Version: N/A
Lenovo » Qt M415 Firmware
Versions before (<) m16kt68a
cpe:2.3:o:lenovo:qt_m415_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Qt M415 » Version: N/A
Lenovo » Thinkcentre M710e Firmware
Versions before (<) m1zkt38a
cpe:2.3:o:lenovo:thinkcentre_m710e_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkcentre M710e » Version: N/A
Lenovo » Thinkcentre M710t Firmware
Versions before (<) m16kt68a
cpe:2.3:o:lenovo:thinkcentre_m710t_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkcentre M710t » Version: N/A
Lenovo » Thinkcentre M710s Firmware
Versions before (<) m16kt68a
cpe:2.3:o:lenovo:thinkcentre_m710s_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkcentre M710s » Version: N/A
Lenovo » Thinkcentre M720t Firmware
Versions before (<) m1ukt67a
cpe:2.3:o:lenovo:thinkcentre_m720t_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkcentre M720t » Version: N/A
Lenovo » Thinkcentre M818z Firmware
Versions before (<) m1ekt25a
cpe:2.3:o:lenovo:thinkcentre_m818z_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkcentre M818z » Version: N/A
Lenovo » Thinkcentre M820z Firmware
Versions before (<) m1nkt58a
cpe:2.3:o:lenovo:thinkcentre_m820z_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkcentre M820z » Version: N/A
Lenovo » Thinkstation P520 Firmware
Versions before (<) s03kt55a
cpe:2.3:o:lenovo:thinkstation_p520_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkstation P520 » Version: N/A
Lenovo » Thinkstation P520c Firmware
Versions before (<) s03kt55a
cpe:2.3:o:lenovo:thinkstation_p520c_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkstation P520c » Version: N/A
Lenovo » Legion C530-19icb Firmware
Versions before (<) o4bkt20a
cpe:2.3:o:lenovo:legion_c530-19icb_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Legion C530-19icb » Version: N/A
Lenovo » Legion T530-28icb Firmware
Versions before (<) o4bkt20a
cpe:2.3:o:lenovo:legion_t530-28icb_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Legion T530-28icb » Version: N/A
Lenovo » Thinkcentre M6600t Firmware
Versions before (<) fwktbaa
cpe:2.3:o:lenovo:thinkcentre_m6600t_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkcentre M6600t » Version: N/A
Lenovo » Thinkcentre M6600s Firmware
Versions before (<) fwktbaa
cpe:2.3:o:lenovo:thinkcentre_m6600s_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkcentre M6600s » Version: N/A
Lenovo » Thinkcentre M710q Firmware
Versions before (<) m1akt56a
cpe:2.3:o:lenovo:thinkcentre_m710q_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkcentre M710q » Version: N/A
Lenovo » Thinkcentre M720q Firmware
Versions before (<) m1ukt67a
cpe:2.3:o:lenovo:thinkcentre_m720q_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkcentre M720q » Version: N/A
Lenovo » Thinkcentre M720s Firmware
Versions before (<) m1ukt67a
cpe:2.3:o:lenovo:thinkcentre_m720s_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkcentre M720s » Version: N/A
Lenovo » Thinkcentre M910t Firmware
Versions before (<) m1akt56a
cpe:2.3:o:lenovo:thinkcentre_m910t_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkcentre M910t » Version: N/A
Lenovo » Thinkcentre M910s Firmware
Versions before (<) m1akt56a
cpe:2.3:o:lenovo:thinkcentre_m910s_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkcentre M910s » Version: N/A
Lenovo » Thinkcentre M920q Firmware
Versions before (<) m1ukt67a
cpe:2.3:o:lenovo:thinkcentre_m920q_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkcentre M920q » Version: N/A
Lenovo » Thinkcentre M920x Firmware
Versions before (<) m1ukt67a
cpe:2.3:o:lenovo:thinkcentre_m920x_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkcentre M920x » Version: N/A
Lenovo » Thinkcentre M920t Firmware
Versions before (<) m1ukt67a
cpe:2.3:o:lenovo:thinkcentre_m920t_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkcentre M920t » Version: N/A
Lenovo » Thinkcentre M920s Firmware
Versions before (<) m1ukt67a
cpe:2.3:o:lenovo:thinkcentre_m920s_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkcentre M920s » Version: N/A
Lenovo » Yta8900f Firmware
Versions before (<) fwktbaa
cpe:2.3:o:lenovo:yta8900f_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Yta8900f » Version: N/A
Lenovo » Thinkcentre E96z Firmware
Versions before (<) m26kt22a
cpe:2.3:o:lenovo:thinkcentre_e96z_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkcentre E96z » Version: N/A
Lenovo » Thinkstation P318 Firmware
Versions before (<) m1akt56a
cpe:2.3:o:lenovo:thinkstation_p318_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkstation P318 » Version: N/A
Lenovo » Thinkstation P320 Tiny Firmware
Versions before (<) m1akt56a
cpe:2.3:o:lenovo:thinkstation_p320_tiny_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkstation P320 Tiny » Version: N/A
Lenovo » Thinkstation P330 Tiny Firmware
Versions before (<) m1ukt67a
cpe:2.3:o:lenovo:thinkstation_p330_tiny_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkstation P330 Tiny » Version: N/A
Lenovo » Ideacentre 720-18apr Firmware
Versions before (<) m25kt61a
cpe:2.3:o:lenovo:ideacentre_720-18apr_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Ideacentre 720-18apr » Version: N/A
Lenovo » Legion T530-28apr Firmware
Versions before (<) o4gkt16a
cpe:2.3:o:lenovo:legion_t530-28apr_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Legion T530-28apr » Version: N/A
Lenovo » V530s-07icb Firmware
Versions before (<) m22kt48a
cpe:2.3:o:lenovo:v530s-07icb_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » V530s-07icb » Version: N/A
Lenovo » Thinkcentre M625q Firmware
Versions before (<) m1wkt45a
cpe:2.3:o:lenovo:thinkcentre_m625q_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkcentre M625q » Version: N/A
Lenovo » Thinkcentre M715t Firmware
Versions before (<) m2ckt4da
cpe:2.3:o:lenovo:thinkcentre_m715t_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkcentre M715t » Version: N/A
Lenovo » Thinkcentre M725s Firmware
Versions before (<) m25kt61a
cpe:2.3:o:lenovo:thinkcentre_m725s_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkcentre M725s » Version: N/A
Lenovo » Qitian A815 Firmware
Versions before (<) m1rkt38a
cpe:2.3:o:lenovo:qitian_a815_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Qitian A815 » Version: N/A
Lenovo » V540-24iwl Firmware
Versions before (<) m29kt39a
cpe:2.3:o:lenovo:v540-24iwl_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » V540-24iwl » Version: N/A
Lenovo » V530-22icb Firmware
Versions before (<) m20kt52a
cpe:2.3:o:lenovo:v530-22icb_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » V530-22icb » Version: N/A
Lenovo » V530-24icb Firmware
Versions before (<) m20kt52a
cpe:2.3:o:lenovo:v530-24icb_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » V530-24icb » Version: N/A
Lenovo » Ideacentre 3-07imb05 Firmware
Versions before (<) m2vkt1da
cpe:2.3:o:lenovo:ideacentre_3-07imb05_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Ideacentre 3-07imb05 » Version: N/A
Lenovo » Ideacentre 5-14imb05 Firmware
Versions before (<) o4hkt38a
cpe:2.3:o:lenovo:ideacentre_5-14imb05_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Ideacentre 5-14imb05 » Version: N/A
Lenovo » Ideacentre 5-14iob6 Firmware
Versions before (<) m3gkt33a
cpe:2.3:o:lenovo:ideacentre_5-14iob6_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Ideacentre 5-14iob6 » Version: N/A
Lenovo » Ideacentre Creator 5-14iob6 Firmware
Versions up to, including, (<=) m3gkt33a
cpe:2.3:o:lenovo:ideacentre_creator_5-14iob6_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Ideacentre Creator 5-14iob6 » Version: N/A
Lenovo » Ideacentre G5-14imb05 Firmware
Versions before (<) o4hkt38a
cpe:2.3:o:lenovo:ideacentre_g5-14imb05_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Ideacentre G5-14imb05 » Version: N/A
Lenovo » Ideacentre Gaming 5-14iob6 Firmware
Versions before (<) m3gkt33a
cpe:2.3:o:lenovo:ideacentre_gaming_5-14iob6_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Ideacentre Gaming 5-14iob6 » Version: N/A
Lenovo » Thinkcentre M60e Tiny Firmware
Versions before (<) m3skt21a
cpe:2.3:o:lenovo:thinkcentre_m60e_tiny_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkcentre M60e Tiny » Version: N/A
Lenovo » Thinkcentre M630e Firmware
Versions before (<) m28kt37a
cpe:2.3:o:lenovo:thinkcentre_m630e_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkcentre M630e » Version: N/A
Lenovo » Thinkcentre M70a Firmware
Versions before (<) m2skt25a
cpe:2.3:o:lenovo:thinkcentre_m70a_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkcentre M70a » Version: N/A
Lenovo » Thinkcentre M720e Firmware
Versions before (<) m30kt26a
cpe:2.3:o:lenovo:thinkcentre_m720e_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkcentre M720e » Version: N/A
Lenovo » Thinkcentre M75n Firmware
Versions before (<) m33kt25a
cpe:2.3:o:lenovo:thinkcentre_m75n_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkcentre M75n » Version: N/A
Lenovo » Thinkcentre M75s Gen 2 Firmware
Versions before (<) m46kt2da
cpe:2.3:o:lenovo:thinkcentre_m75s_gen_2_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkcentre M75s Gen 2 » Version: N/A
Lenovo » Thinkcentre M70a Gen 2 Firmware
Versions before (<) m3nkt20a
cpe:2.3:o:lenovo:thinkcentre_m70a_gen_2_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkcentre M70a Gen 2 » Version: N/A
Lenovo » Thinkcentre M70c Firmware
Versions before (<) m2vkt1da
cpe:2.3:o:lenovo:thinkcentre_m70c_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkcentre M70c » Version: N/A
Lenovo » Thinkcentre M70q Firmware
Versions before (<) m2wkt57a
cpe:2.3:o:lenovo:thinkcentre_m70q_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkcentre M70q » Version: N/A
Lenovo » Thinkcentre M75t Gen 2 Firmware
Versions before (<) m46kt2da
cpe:2.3:o:lenovo:thinkcentre_m75t_gen_2_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkcentre M75t Gen 2 » Version: N/A
Lenovo » Thinkcentre M80q Firmware
Versions before (<) m2wkt57a
cpe:2.3:o:lenovo:thinkcentre_m80q_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkcentre M80q » Version: N/A
Lenovo » Thinkcentre M90a Firmware
Versions before (<) m2rkt52a
cpe:2.3:o:lenovo:thinkcentre_m90a_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkcentre M90a » Version: N/A
Lenovo » Thinkcentre M90q Tiny Firmware
Versions before (<) m2wkt57a
cpe:2.3:o:lenovo:thinkcentre_m90q_tiny_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkcentre M90q Tiny » Version: N/A
Lenovo » Ideacentre 510a-15arr Firmware
Versions before (<) o4dkt43a
cpe:2.3:o:lenovo:ideacentre_510a-15arr_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Ideacentre 510a-15arr » Version: N/A
Lenovo » Ideacentre 510s-07icb Firmware
Versions before (<) m22kt47a
cpe:2.3:o:lenovo:ideacentre_510s-07icb_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Ideacentre 510s-07icb » Version: N/A
Lenovo » Ideacentre 510s-07ick Firmware
Versions before (<) m30kt26a
cpe:2.3:o:lenovo:ideacentre_510s-07ick_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Ideacentre 510s-07ick » Version: N/A
Lenovo » V30a-22iml Firmware
Versions before (<) m37kt28a
cpe:2.3:o:lenovo:v30a-22iml_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » V30a-22iml » Version: N/A
Lenovo » V50a-24imb Firmware
Versions before (<) m36kt28a
cpe:2.3:o:lenovo:v50a-24imb_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » V50a-24imb » Version: N/A
Lenovo » V50s-07imb Firmware
Versions before (<) m2vkt1da
cpe:2.3:o:lenovo:v50s-07imb_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » V50s-07imb » Version: N/A
Lenovo » V50a-22imb Firmware
Versions before (<) m36kt28a
cpe:2.3:o:lenovo:v50a-22imb_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » V50a-22imb » Version: N/A
Lenovo » V50t-13imb Firmware
Versions before (<) o4hkt38a
cpe:2.3:o:lenovo:v50t-13imb_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » V50t-13imb » Version: N/A
Lenovo » V520 Firmware
Versions before (<) m16kt68a
cpe:2.3:o:lenovo:v520_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » V520 » Version: N/A
Lenovo » V520s Firmware
Versions before (<) m16kt68a
cpe:2.3:o:lenovo:v520s_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » V520s » Version: N/A
Lenovo » V530-15arr Firmware
Versions before (<) o4dkt43a
cpe:2.3:o:lenovo:v530-15arr_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » V530-15arr » Version: N/A
Lenovo » V530-15icr Firmware
Versions before (<) m2ykt31a
cpe:2.3:o:lenovo:v530-15icr_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » V530-15icr » Version: N/A
Lenovo » V530s-07icr Firmware
Versions before (<) m30kt26a
cpe:2.3:o:lenovo:v530s-07icr_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » V530s-07icr » Version: N/A
Lenovo » V55t-15api Firmware
Versions before (<) o4dkt43a
cpe:2.3:o:lenovo:v55t-15api_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » V55t-15api » Version: N/A
Lenovo » Thinkstation P340 Tiny Firmware
Versions before (<) m2wkt57a
cpe:2.3:o:lenovo:thinkstation_p340_tiny_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkstation P340 Tiny » Version: N/A
Lenovo » Thinkstation P340 Firmware
Versions before (<) s08kt50a
cpe:2.3:o:lenovo:thinkstation_p340_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkstation P340 » Version: N/A
Lenovo » Stadia Ggp-120 Firmware
Versions before (<) s03kt55a
cpe:2.3:o:lenovo:stadia_ggp-120_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Stadia Ggp-120 » Version: N/A
Lenovo » Thinkedge Se30 Firmware
Versions before (<) m3fkt29a
cpe:2.3:o:lenovo:thinkedge_se30_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkedge Se30 » Version: N/A
Lenovo » Thinkcentre M90a Gen2 Firmware
Versions before (<) m3lkt26a
cpe:2.3:o:lenovo:thinkcentre_m90a_gen2_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkcentre M90a Gen2 » Version: N/A
Lenovo » Ideacentre C5-14imb05 Firmware
Versions before (<) o4hkt38a
cpe:2.3:o:lenovo:ideacentre_c5-14imb05_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Ideacentre C5-14imb05 » Version: N/A
Lenovo » V30a-24iml Firmware
Versions before (<) m37kt28a
cpe:2.3:o:lenovo:v30a-24iml_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » V30a-24iml » Version: N/A
Lenovo » V50t-13iob G2 Firmware
Versions before (<) m3gkt33a
cpe:2.3:o:lenovo:v50t-13iob_g2_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » V50t-13iob G2 » Version: N/A
Lenovo » V530-15icb Firmware
Versions before (<) m1ykt70a
cpe:2.3:o:lenovo:v530-15icb_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » V530-15icb » Version: N/A
Lenovo » Ideacentre 3 07iab7 Firmware
Versions before (<) m49kt1da
cpe:2.3:o:lenovo:ideacentre_3_07iab7_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Ideacentre 3 07iab7 » Version: N/A
Lenovo » Ideacentre 5 14iab7 Firmware
Versions before (<) m42kt40a
cpe:2.3:o:lenovo:ideacentre_5_14iab7_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Ideacentre 5 14iab7 » Version: N/A
Lenovo » Ideacentre 5-14acn6 Firmware
Versions before (<) o5ekt21a
cpe:2.3:o:lenovo:ideacentre_5-14acn6_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Ideacentre 5-14acn6 » Version: N/A
Lenovo » Ideacentre Gaming 5 17acn7 Firmware
Versions before (<) o5ekt21a
cpe:2.3:o:lenovo:ideacentre_gaming_5_17acn7_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Ideacentre Gaming 5 17acn7 » Version: N/A
Lenovo » Ideacentre Gaming 5 17iab7 Firmware
Versions before (<) m42kt40a
cpe:2.3:o:lenovo:ideacentre_gaming_5_17iab7_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Ideacentre Gaming 5 17iab7 » Version: N/A
Lenovo » Ideacentre Gaming 5-14acn6 Firmware
Versions before (<) o5ekt21a
cpe:2.3:o:lenovo:ideacentre_gaming_5-14acn6_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Ideacentre Gaming 5-14acn6 » Version: N/A
Lenovo » Legion T5-26iob6 Firmware
Versions before (<) o54kt1da
cpe:2.3:o:lenovo:legion_t5-26iob6_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Legion T5-26iob6 » Version: N/A
Lenovo » Legion T5-28icb05 Firmware
Versions before (<) o4bkt20a
cpe:2.3:o:lenovo:legion_t5-28icb05_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Legion T5-28icb05 » Version: N/A
Lenovo » Legion T7-34imz5 Firmware
Versions before (<) o4lkt1ea
cpe:2.3:o:lenovo:legion_t7-34imz5_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Legion T7-34imz5 » Version: N/A
Lenovo » Ideacentre T540-15ama G Firmware
Versions before (<) m2ckt4da
cpe:2.3:o:lenovo:ideacentre_t540-15ama_g_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Ideacentre T540-15ama G » Version: N/A
Lenovo » Ideacentre T540-15ick Firmware
Versions before (<) o4kkt16a
cpe:2.3:o:lenovo:ideacentre_t540-15ick_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Ideacentre T540-15ick » Version: N/A
Lenovo » Ideacentre 3-07ada05 Firmware
Versions before (<) o4fkt29a
cpe:2.3:o:lenovo:ideacentre_3-07ada05_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Ideacentre 3-07ada05 » Version: N/A
Lenovo » Ideacentre 5-14are05 Firmware
Versions before (<) o4zkt29a
cpe:2.3:o:lenovo:ideacentre_5-14are05_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Ideacentre 5-14are05 » Version: N/A
Lenovo » Ideacentre G5-14amr05 Firmware
Versions before (<) o4zkt29a
cpe:2.3:o:lenovo:ideacentre_g5-14amr05_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Ideacentre G5-14amr05 » Version: N/A
Lenovo » Ideacentre 510-15ick Firmware
Versions before (<) o4kkt16a
cpe:2.3:o:lenovo:ideacentre_510-15ick_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Ideacentre 510-15ick » Version: N/A
Lenovo » Ideacentre 510a-15ick Firmware
Versions before (<) o4kkt16a
cpe:2.3:o:lenovo:ideacentre_510a-15ick_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Ideacentre 510a-15ick » Version: N/A
Lenovo » V35s-07ada Firmware
Versions before (<) o4fkt29a
cpe:2.3:o:lenovo:v35s-07ada_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » V35s-07ada » Version: N/A
Lenovo » V55t Gen 2 13acn Firmware
Versions before (<) o5jkt20a
cpe:2.3:o:lenovo:v55t_gen_2_13acn_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » V55t Gen 2 13acn » Version: N/A
Lenovo » V55t-15are Firmware
Versions before (<) o4dkt43a
cpe:2.3:o:lenovo:v55t-15are_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » V55t-15are » Version: N/A
Lenovo » Thinksmart Core & Controller Full Room Kit: Microsoft Teams Rooms Firmware » Version: N/A
cpe:2.3:o:lenovo:thinksmart_core_\&_controller_full_room_kit\:_microsoft_teams_rooms_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinksmart Core & Controller Full Room Kit: Microsoft Teams Rooms » Version: N/A
Lenovo » Thinksmart Core & Controller Kit: Microsoft Teams Rooms Firmware » Version: N/A
cpe:2.3:o:lenovo:thinksmart_core_\&_controller_kit\:_microsoft_teams_rooms_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinksmart Core & Controller Kit: Microsoft Teams Rooms » Version: N/A
Lenovo » Thinksmart Core Device For Logitech Firmware » Version: N/A
cpe:2.3:o:lenovo:thinksmart_core_device_for_logitech_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinksmart Core Device For Logitech » Version: N/A
Lenovo » Thinksmart Core Device For Poly Firmware » Version: N/A
cpe:2.3:o:lenovo:thinksmart_core_device_for_poly_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinksmart Core Device For Poly » Version: N/A
Lenovo » Thinksmart Core Device: Zoom Rooms Firmware » Version: N/A
cpe:2.3:o:lenovo:thinksmart_core_device\:_zoom_rooms_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinksmart Core Device: Zoom Rooms » Version: N/A
Lenovo » Thinksmart Hub Teams Firmware
Versions before (<) m2xkt20a
cpe:2.3:o:lenovo:thinksmart_hub_teams_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinksmart Hub Teams » Version: N/A
Lenovo » Thinksmart Hub Zoom Firmware
Versions before (<) m2xkt20a
cpe:2.3:o:lenovo:thinksmart_hub_zoom_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinksmart Hub Zoom » Version: N/A
Lenovo » Thinksystem St50 Firmware
Versions before (<) ite123e
cpe:2.3:o:lenovo:thinksystem_st50_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinksystem St50 » Version: N/A
Lenovo » Thinksystem St58 Firmware
Versions before (<) ite123e
cpe:2.3:o:lenovo:thinksystem_st58_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinksystem St58 » Version: N/A
Lenovo » Thinkcentre M70q Gen 2 Firmware
Versions before (<) m2wkt57a
cpe:2.3:o:lenovo:thinkcentre_m70q_gen_2_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkcentre M70q Gen 2 » Version: N/A
Lenovo » Thinkcentre M70q Gen 3 Firmware
Versions before (<) m43kt16a
cpe:2.3:o:lenovo:thinkcentre_m70q_gen_3_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkcentre M70q Gen 3 » Version: N/A
Lenovo » Thinkcentre M70s Gen 3 Firmware
Versions before (<) m41kt2da
cpe:2.3:o:lenovo:thinkcentre_m70s_gen_3_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkcentre M70s Gen 3 » Version: N/A
Lenovo » Thinkcentre M70t Gen 3 Firmware
Versions before (<) m41kt2da
cpe:2.3:o:lenovo:thinkcentre_m70t_gen_3_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkcentre M70t Gen 3 » Version: N/A
Lenovo » Thinkcentre M75q Gen 2 Firmware
Versions before (<) m47kt24a
cpe:2.3:o:lenovo:thinkcentre_m75q_gen_2_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkcentre M75q Gen 2 » Version: N/A
Lenovo » Thinkcentre M90q Gen 2 Firmware
Versions before (<) m3jkt34a
cpe:2.3:o:lenovo:thinkcentre_m90q_gen_2_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkcentre M90q Gen 2 » Version: N/A
Lenovo » Thinkcentre Neo 50s Gen 3 Firmware
Versions before (<) m49kt1da
cpe:2.3:o:lenovo:thinkcentre_neo_50s_gen_3_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkcentre Neo 50s Gen 3 » Version: N/A
Lenovo » Ideacentre A340-22igm Firmware
Versions before (<) o51kt12a
cpe:2.3:o:lenovo:ideacentre_a340-22igm_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Ideacentre A340-22igm » Version: N/A
Lenovo » Ideacentre A340-24igm Firmware
Versions before (<) o51kt12a
cpe:2.3:o:lenovo:ideacentre_a340-24igm_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Ideacentre A340-24igm » Version: N/A
Lenovo » V330-20icb Firmware
Versions before (<) m1qkt47a
cpe:2.3:o:lenovo:v330-20icb_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » V330-20icb » Version: N/A
Lenovo » Yoga A940-27icb Firmware
Versions before (<) o43kt43a
cpe:2.3:o:lenovo:yoga_a940-27icb_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Yoga A940-27icb » Version: N/A
Lenovo » Thinkstation P348 Firmware
Versions before (<) m3kkt34a
cpe:2.3:o:lenovo:thinkstation_p348_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkstation P348 » Version: N/A
Lenovo » Thinkstation P350 Tiny Firmware
Versions before (<) m3jkt34a
cpe:2.3:o:lenovo:thinkstation_p350_tiny_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkstation P350 Tiny » Version: N/A
Lenovo » Thinkstation P350 Firmware
Versions up to, including, (<=) s0akt34a
cpe:2.3:o:lenovo:thinkstation_p350_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkstation P350 » Version: N/A
Lenovo » Thinkstation P620 Firmware
Versions before (<) s07kt25a
cpe:2.3:o:lenovo:thinkstation_p620_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkstation P620 » Version: N/A
Lenovo » Thinkcentre M75q-1 Firmware
Versions before (<) m2fkt2da
cpe:2.3:o:lenovo:thinkcentre_m75q-1_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkcentre M75q-1 » Version: N/A
Lenovo » Thinkcentre M75s-1 Firmware
Versions before (<) m2ckt4da
cpe:2.3:o:lenovo:thinkcentre_m75s-1_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkcentre M75s-1 » Version: N/A
Lenovo » Thinkcentre Neo 50t Gen 3 Firmware
Versions before (<) m42kt40a
cpe:2.3:o:lenovo:thinkcentre_neo_50t_gen_3_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinkcentre Neo 50t Gen 3 » Version: N/A
Lenovo » Thinksmart Core & Controller Full Room Kit: Zoom Rooms Firmware » Version: N/A
cpe:2.3:o:lenovo:thinksmart_core_\&_controller_full_room_kit\:_zoom_rooms_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinksmart Core & Controller Full Room Kit: Zoom Rooms » Version: N/A
Lenovo » Thinksmart Core & Controller Kit: Zoom Rooms Firmware » Version: N/A
cpe:2.3:o:lenovo:thinksmart_core_\&_controller_kit\:_zoom_rooms_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Thinksmart Core & Controller Kit: Zoom Rooms » Version: N/A

Exploit prediction scoring system (EPSS) score for CVE-2022-40135

EPSS FAQ

0.04%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 10 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2022-40135

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
4.4	MEDIUM	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N	0.8	3.6	NIST
Attack Vector: Local Attack Complexity: Low Privileges Required: High User Interaction: None Scope: Unchanged Confidentiality: High Integrity: None Availability: None
4.4	MEDIUM	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N	0.8	3.6	Lenovo Group Ltd.
Attack Vector: Local Attack Complexity: Low Privileges Required: High User Interaction: None Scope: Unchanged Confidentiality: High Integrity: None Availability: None

CWE ids for CVE-2022-40135

CWE-125 Out-of-bounds Read

The product reads data past the end, or before the beginning, of the intended buffer.
Assigned by:
- nvd@nist.gov (Primary)
- psirt@lenovo.com (Secondary)

References for CVE-2022-40135

https://support.lenovo.com/us/en/product_security/LEN-94953

Multi-Vendor BIOS Security Vulnerabilities (September 2022) - Lenovo Support US
Vendor Advisory

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2022-40135

Products affected by CVE-2022-40135

Exploit prediction scoring system (EPSS) score for CVE-2022-40135

CVSS scores for CVE-2022-40135

CWE ids for CVE-2022-40135

References for CVE-2022-40135