lenovo

488 tracked vulnerabilities.

CVE-2021-3786 MEDIUM
Lenovo Notebook/ThinkPad - Info Disclosure
Nov 12, 2021
CVSS 4.4
EPSS 0.00
CVE-2021-3720 MEDIUM
Lenovo Legion Phone Pro and Phone2 Pro Firmware - Unprotected GPS Data Exposure via Time Weather Widget
Nov 12, 2021
CVSS 5.5
EPSS 0.00
CVE-2021-3719 MEDIUM
ThinkCentre/ThinkStation - Privilege Escalation
Nov 12, 2021
CVSS 6.7
EPSS 0.00
CVE-2021-3718 MEDIUM
Lenovo ThinkPad Firmware - Denial of Service via Enhanced Biometrics Setting
Nov 12, 2021
CVSS 4.3
EPSS 0.00
CVE-2021-3599 MEDIUM
Lenovo ThinkPad Firmware - Authenticated Arbitrary Code Execution via SMI Callback Function
Nov 12, 2021
CVSS 6.7
EPSS 0.00
CVE-2021-3519 MEDIUM
Lenovo IdeaCentre and ThinkCentre Firmware - Unauthenticated Boot Menu Access via BIOS Password Bypass
Nov 12, 2021
CVSS 6.4
EPSS 0.00
CVE-2021-3633 HIGH
Lenovo Driver Management < 2.9.0719.1104 - DLL Preloading Privilege Escalation
Aug 17, 2021
CVSS 7.3
EPSS 0.00
CVE-2021-3617 HIGH
Lenovo Smart Camera X3, X5, and C2E Firmware < 01.03.29.16 - OS Command Injection via Network Configuration
Aug 17, 2021
CVSS 7.2
EPSS 0.02
CVE-2021-3616 CRITICAL
Lenovo Smart Camera X3/X5/C2E < 01.03.29.16 - Unauthenticated Info Disclosure & Firmware Modification
Aug 17, 2021
CVSS 9.4
EPSS 0.01
CVE-2021-3615 MEDIUM
Lenovo Smart Camera X3 X5 C2E Firmware < 01.03.29.16 - Code Execution via SD Card File
Aug 17, 2021
CVSS 6.6
EPSS 0.00
CVE-2021-3614 MEDIUM
Lenovo Notebook - Privilege Escalation
Jul 16, 2021
CVSS 6.4
EPSS 0.00
CVE-2021-3550 HIGH
Lenovo PCManager <3.0.500.5102 - Privilege Escalation
Jul 16, 2021
CVSS 7.8
EPSS 0.00
CVE-2021-3453 MEDIUM
Lenovo Notebook, ThinkPad, and Desktop Systems - BIOS Module Protection Bypass
Jul 16, 2021
CVSS 6.8
EPSS 0.00
CVE-2021-3452 MEDIUM
Lenovo BIOS - Authenticated Arbitrary Code Execution via System Shutdown SMI Callback
Jul 16, 2021
CVSS 6.7
EPSS 0.00
CVE-2021-3464 HIGH
Lenovo PCManager < 3.0.400.3252 - DLL Search Path Privilege Escalation
Apr 27, 2021
CVSS 7.8
EPSS 0.00
CVE-2021-3451 MEDIUM
Lenovo PCManager < 3.0.400.3252 - Denial of Service via Configuration File Misplacement
Apr 27, 2021
CVSS 5.5
EPSS 0.00
CVE-2021-3473 MEDIUM
Lenovo XClarity Controller - Cleartext Transmission of Sensitive Information in FFDC Service Log
Apr 13, 2021
CVSS 4.5
EPSS 0.00
CVE-2021-3463 MEDIUM
Lenovo Power Management Driver < 1.67.17.54 - Denial of Service via Null Pointer Dereference
Apr 13, 2021
CVSS 4.2
EPSS 0.00
CVE-2021-3462 MEDIUM
Lenovo Power Management Driver < 1.67.17.54 - Privilege Escalation via Unauthorized Device Object Access
Apr 13, 2021
CVSS 5.5
EPSS 0.00
CVE-2021-3417 MEDIUM
Lenovo XClarity Orchestrator < 1.2.2 - Cleartext Transmission of Sensitive Information in FFDC Service Log
Mar 09, 2021
CVSS 4.9
EPSS 0.01
CVE-2020-8357 MEDIUM
Lenovo PCManager <3.0.200.2042 - DoS
Mar 09, 2021
CVSS 5.5
EPSS 0.00
CVE-2020-8356 MEDIUM
Lenovo XClarity Orchestrator < 1.2.2 - Cleartext Transmission of Sensitive Information in Log Files
Mar 09, 2021
CVSS 4.9
EPSS 0.01
CVE-2020-8355 MEDIUM
Lenovo XClarity Administrator <3.1.0 - Info Disclosure
Feb 10, 2021
CVSS 4.9
EPSS 0.01
CVE-2020-8351 HIGH
Lenovo PCManager <3.0.50.9162 - Privilege Escalation
Nov 30, 2020
CVSS 7.8
EPSS 0.00
CVE-2020-8354 MEDIUM
Lenovo Notebook Firmware - Arbitrary Code Execution via VariableServiceSmm SMI Callback Race Condition
Nov 11, 2020
CVSS 6.4
EPSS 0.00