A buffer overflow was reported in the Update_WMI module in some Lenovo Desktop products that may allow a local attacker with elevated privileges to execute arbitrary code.
Max CVSS
6.7
EPSS Score
0.04%
Published
2023-11-08
Updated
2023-11-16
A buffer overflow was reported in the SmuV11DxeVMR module in some Lenovo Desktop products that may allow a local attacker with elevated privileges to execute arbitrary code.
Max CVSS
6.7
EPSS Score
0.04%
Published
2023-11-08
Updated
2023-11-16
A buffer overflow was reported in the SmuV11Dxe driver in some Lenovo Desktop products that may allow a local attacker with elevated privileges to execute arbitrary code.
Max CVSS
6.7
EPSS Score
0.04%
Published
2023-11-08
Updated
2023-11-16
A buffer overflow was reported in the SmiFlash module in some Lenovo Desktop products that may allow a local attacker with elevated privileges to execute arbitrary code.
Max CVSS
6.7
EPSS Score
0.04%
Published
2023-11-08
Updated
2023-11-16
A buffer overflow was reported in the ReFlash module in some Lenovo Desktop products that may allow a local attacker with elevated privileges to execute arbitrary code.
Max CVSS
6.7
EPSS Score
0.04%
Published
2023-11-08
Updated
2023-11-16
A buffer overflow was reported in the WMISwSmi module in some Lenovo Desktop products that may allow a local attacker with elevated privileges to execute arbitrary code.
Max CVSS
6.7
EPSS Score
0.04%
Published
2023-11-08
Updated
2023-11-16
A buffer overflow was reported in the UltraFunctionTable module in some Lenovo Desktop products that may allow a local attacker with elevated privileges to execute arbitrary code.
Max CVSS
6.7
EPSS Score
0.04%
Published
2023-11-08
Updated
2023-11-16
A buffer overflow was reported in the LEMALLDriversConnectedEventHook module in some Lenovo Desktop products that may allow a local attacker with elevated privileges to execute arbitrary code.
Max CVSS
6.7
EPSS Score
0.04%
Published
2023-11-08
Updated
2023-11-15
A buffer overflow was reported in the BiosExtensionLoader module in some Lenovo Desktop products that may allow a local attacker with elevated privileges to execute arbitrary code.
Max CVSS
6.7
EPSS Score
0.04%
Published
2023-11-08
Updated
2023-11-15
A buffer overflow was reported in the OemSmi module in some Lenovo Desktop products that may allow a local attacker with elevated privileges to execute arbitrary code. 
Max CVSS
6.7
EPSS Score
0.04%
Published
2023-11-08
Updated
2023-11-16
A buffer overflow was reported in the LemSecureBootForceKey module in some Lenovo Desktop products that may allow a local attacker with elevated privileges to execute arbitrary code.
Max CVSS
6.7
EPSS Score
0.04%
Published
2023-11-08
Updated
2023-11-16
A buffer overflow has been identified in the SetupUtility driver in some Lenovo Notebook products which may allow an attacker with local access and elevated privileges to execute arbitrary code.
Max CVSS
6.7
EPSS Score
0.04%
Published
2023-08-17
Updated
2023-08-24
A valid, authenticated user may be able to trigger a denial of service of the XCC web user interface or other undefined behavior through a format string injection vulnerability in a web interface API.
Max CVSS
8.8
EPSS Score
0.05%
Published
2023-05-01
Updated
2023-05-10
A buffer overflow was reported in the FmpSipoCapsuleDriver driver in the IdeaPad Duet 3-10IGL5 that may allow a local attacker with elevated privileges to execute arbitrary code.
Max CVSS
6.7
EPSS Score
0.04%
Published
2023-11-08
Updated
2023-11-16
A buffer overflow has been identified in the SystemUserMasterHddPwdDxe driver in some Lenovo Notebook products which may allow an attacker with local access and elevated privileges to execute arbitrary code.
Max CVSS
6.7
EPSS Score
0.04%
Published
2023-08-17
Updated
2023-08-24
A potential vulnerability in the LenovoFlashDeviceInterface SMI handler may allow an attacker with local access and elevated privileges to execute arbitrary code.
Max CVSS
6.7
EPSS Score
0.04%
Published
2023-06-26
Updated
2023-07-05
A buffer overflow vulnerability in the SecureBootDXE BIOS driver of some Lenovo Desktop and ThinkStation models could allow an attacker with local access to elevate their privileges to execute arbitrary code.
Max CVSS
7.8
EPSS Score
0.04%
Published
2023-06-05
Updated
2023-06-13
An ErrorMessage driver stack-based buffer overflow vulnerability in BIOS of some ThinkPad models could allow an attacker with local access to elevate their privileges and execute arbitrary code.
Max CVSS
7.8
EPSS Score
0.04%
Published
2023-06-05
Updated
2023-06-13
A buffer overflow in the WMI SMI Handler in some Lenovo models may allow an attacker with local access and elevated privileges to execute arbitrary code.
Max CVSS
6.7
EPSS Score
0.04%
Published
2023-01-30
Updated
2023-02-08
A buffer overflow exists in the Remote Presence subsystem which can potentially allow valid, authenticated users to cause a recoverable subsystem denial of service.
Max CVSS
7.2
EPSS Score
0.07%
Published
2023-01-30
Updated
2023-02-08
A potential vulnerability was discovered in LCFC BIOS for some Lenovo consumer notebook models that could allow a local attacker with elevated privileges to execute arbitrary code due to improper buffer validation.
Max CVSS
6.7
EPSS Score
0.04%
Published
2023-08-23
Updated
2023-08-29
A buffer overflow in the SystemBootManagerDxe driver in some Lenovo Notebook products may allow an attacker with local privileges to execute arbitrary code.
Max CVSS
7.8
EPSS Score
0.04%
Published
2023-01-26
Updated
2023-02-03
A buffer overflow in the SystemLoadDefaultDxe driver in some Lenovo Notebook products may allow an attacker with local privileges to execute arbitrary code.
Max CVSS
7.8
EPSS Score
0.04%
Published
2023-01-26
Updated
2023-02-03
A buffer overflow in the ReadyBootDxe driver in some Lenovo Notebook products may allow an attacker with local privileges to execute arbitrary code.
Max CVSS
7.8
EPSS Score
0.04%
Published
2023-01-26
Updated
2023-02-03
A buffer overflow vulnerability in Lenovo Smart Standby Driver prior to version 4.1.50.0 could allow a local attacker to cause denial of service.
Max CVSS
5.5
EPSS Score
0.04%
Published
2022-05-18
Updated
2022-05-26
35 vulnerabilities found
1 2
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!