lenovo
482 tracked vulnerabilities.
CVE-2021-42851
MEDIUM
Lenovo Personal Cloud Storage A1/T1/X1/T2/T2Pro Firmware < 5.3.8 - Unauthenticated Account Creation
May 18, 2022
CVSS 6.3
EPSS 0.00
CVE-2021-42850
HIGH
Lenovo Personal Cloud Storage A1/T1/X1/T2/T2Pro Firmware - Use of Hard-coded Credentials
May 18, 2022
CVSS 8.8
EPSS 0.00
CVE-2021-42849
MEDIUM
Lenovo A1 Firmware < 5.3.6.a1 - Authentication Bypass
May 18, 2022
CVSS 6.8
EPSS 0.00
CVE-2021-42848
MEDIUM
Lenovo Personal Cloud Storage A1/T1/X1/T2/T2Pro Firmware < 5.3.8 - Unauthenticated Information Disclosure
May 18, 2022
CVSS 4.3
EPSS 0.00
CVE-2021-3969
HIGH
Lenovo System Interface Foundation < 1.1.20.3 - Privilege Escalation via TOCTOU Race Condition in IMController
May 18, 2022
CVSS 7.8
EPSS 0.00
CVE-2021-3956
MEDIUM
Lenovo XClarity Controller < 7.22_cdi382o - LDAP Auth Bypass (Unauthenticated Read-Only Access)
May 18, 2022
CVSS 4.3
EPSS 0.00
CVE-2021-3922
HIGH
Lenovo System Interface Foundation < 1.1.20.3 - Time-of-check Time-of-use Race Condition in IMController
May 18, 2022
CVSS 7.8
EPSS 0.00
CVE-2021-4212
MEDIUM
Lenovo Notebook - Privilege Escalation
Apr 22, 2022
CVSS 6.7
EPSS 0.00
CVE-2021-4211
MEDIUM
Lenovo Desktop/ThinkStation/ThinkEdge - Local Privilege Escalation
Apr 22, 2022
CVSS 6.7
EPSS 0.00
CVE-2021-4210
MEDIUM
Lenovo Desktop/ThinkStation/ThinkEdge - Local Privilege Escalation
Apr 22, 2022
CVSS 6.7
EPSS 0.00
CVE-2021-3972
MEDIUM
Lenovo Notebook BIOS - Privilege Escalation
Apr 22, 2022
CVSS 6.7
EPSS 0.03
CVE-2021-3971
MEDIUM
Lenovo Notebook < - Privilege Escalation
Apr 22, 2022
CVSS 6.7
EPSS 0.01
CVE-2021-3970
MEDIUM
Lenovo IdeaPad 3 Firmware - Authenticated Arbitrary Code Execution via LenovoVariable SMI Handler
Apr 22, 2022
CVSS 6.7
EPSS 0.00
CVE-2021-3897
CRITICAL
Lenovo Fan Power Controller2/FPC2 - Auth Bypass
Apr 22, 2022
CVSS 9.8
EPSS 0.01
CVE-2021-3849
CRITICAL
Lenovo Fan Power Controller2/FPC2 - Auth Bypass
Apr 22, 2022
CVSS 9.8
EPSS 0.01
CVE-2021-3722
MEDIUM
Lenovo PCManager <4.0.40.2175 - DoS
Apr 22, 2022
CVSS 5.0
EPSS 0.00
CVE-2021-3721
MEDIUM
Lenovo PCManager <4.0.20.10282 - DoS
Apr 22, 2022
CVSS 5.5
EPSS 0.00
CVE-2021-3843
MEDIUM
Lenovo ThinkPad Firmware - Authenticated Arbitrary Code Execution via SMI EEPROM Access
Nov 12, 2021
CVSS 6.7
EPSS 0.00
CVE-2021-3840
HIGH
Lenovo Antilles < 1.0.1 - Remote Code Execution via Dependency Confusion
Nov 12, 2021
CVSS 8.8
EPSS 0.01
CVE-2021-3786
MEDIUM
Lenovo Notebook/ThinkPad - Info Disclosure
Nov 12, 2021
CVSS 4.4
EPSS 0.00
CVE-2021-3720
MEDIUM
Lenovo Legion Phone Pro and Phone2 Pro Firmware - Unprotected GPS Data Exposure via Time Weather Widget
Nov 12, 2021
CVSS 5.5
EPSS 0.00
CVE-2021-3719
MEDIUM
ThinkCentre/ThinkStation - Privilege Escalation
Nov 12, 2021
CVSS 6.7
EPSS 0.00
CVE-2021-3718
MEDIUM
Lenovo ThinkPad Firmware - Denial of Service via Enhanced Biometrics Setting
Nov 12, 2021
CVSS 4.3
EPSS 0.00
CVE-2021-3599
MEDIUM
Lenovo ThinkPad Firmware - Authenticated Arbitrary Code Execution via SMI Callback Function
Nov 12, 2021
CVSS 6.7
EPSS 0.00
CVE-2021-3519
MEDIUM
Lenovo IdeaCentre and ThinkCentre Firmware - Unauthenticated Boot Menu Access via BIOS Password Bypass
Nov 12, 2021
CVSS 6.4
EPSS 0.00
Products
thinkcentre_m625q_firmware 28
ideacentre_5-14iob6_firmware 27
ideacentre_g5-14imb05_firmware 27
ideacentre_gaming_5-14iob6_firmware 27
thinkcentre_m75n_firmware 27
v50t-13imb_firmware 27
xclarity_administrator 27
ideacentre_3-07imb05_firmware 26
ideacentre_c5-14imb05_firmware 26
ideacentre_creator_5-14iob6_firmware 26
thinkcentre_m75s_gen_2_firmware 26
thinkcentre_m75t_gen_2_firmware 26
v30a-22iml_firmware 26
v50s-07imb_firmware 26
ideacentre_3-07ada05_firmware 25
ideacentre_g5-14amr05_firmware 25
legion_t7-34imz5_firmware 25
thinkcentre_m70c_firmware 25
thinkcentre_m70q_firmware 25
thinkcentre_m80q_firmware 25
thinkcentre_m80s_firmware 25
thinkcentre_m80t_firmware 25
thinkcentre_m90a_firmware 25
thinkcentre_m90q_tiny_firmware 25
thinkcentre_m90s_firmware 25
thinkedge_se30_firmware 25
v30a-24iml_firmware 25
v50a-22imb_firmware 25
v50a-24imb_firmware 25
v55t_gen_2_13acn_firmware 25
Quick Filters