lenovo

482 tracked vulnerabilities.

CVE-2024-12673 HIGH
Lenovo Vantage - Privilege Escalation
Feb 12, 2025
CVSS 7.8
EPSS 0.00
CVE-2024-45102 MEDIUM
Lenovo XClarity Administrator < 4.1 - Authenticated Privilege Escalation via SSO Provider
Jan 14, 2025
CVSS 6.8
EPSS 0.00
CVE-2024-10254 MEDIUM
Lenovo PC Manager Browser and App Store - Heap-based Buffer Overflow
Jan 14, 2025
CVSS 4.7
EPSS 0.00
CVE-2024-10253 MEDIUM
Lenovo PC Manager Browser and App Store - Denial of Service via TOCTOU
Jan 14, 2025
CVSS 4.7
EPSS 0.00
CVE-2024-8058 HIGH
Lenovo FileZ Client < 9.8.6.0 - Arbitrary File Read via URL Preloading
Dec 16, 2024
CVSS 7.6
EPSS 0.00
CVE-2024-6001 HIGH
Lenovo Accessories and Display Manager < 1.0.5.0.5 - Improper Certificate Validation
Dec 16, 2024
CVSS 8.1
EPSS 0.00
CVE-2024-4762 HIGH
Lenovo Accessories and Display Manager <1.0.5.0.5 & Display Control Center <3.0.32161.0 - Privilege Escalation
Dec 16, 2024
CVSS 7.8
EPSS 0.00
CVE-2024-9046 HIGH
Lenovo stARstudio < 2020.3.12.34806 - DLL Hijacking
Oct 11, 2024
CVSS 7.8
EPSS 0.00
CVE-2024-5474 MEDIUM
Lenovo Dolby Vision Provisioning < 2.0.0.2 - Information Disclosure via Insecure Installation Permissions
Oct 11, 2024
CVSS 5.5
EPSS 0.00
CVE-2024-4132 HIGH
Lenovo Lock Screen < 9.0.18 - DLL Hijacking
Oct 11, 2024
CVSS 7.8
EPSS 0.00
CVE-2024-4131 HIGH
Lenovo Emulator < 9.1.6 - DLL Hijacking
Oct 11, 2024
CVSS 7.8
EPSS 0.00
CVE-2024-4130 HIGH
Lenovo App Store < 9.0.17 - DLL Hijacking
Oct 11, 2024
CVSS 7.8
EPSS 0.00
CVE-2024-4089 HIGH
Lenovo Super File - Privilege Escalation
Oct 11, 2024
CVSS 7.8
EPSS 0.00
CVE-2024-33582 HIGH
Lenovo Service Framework - Privilege Escalation
Oct 11, 2024
CVSS 7.8
EPSS 0.00
CVE-2024-33581 HIGH
Lenovo PC Manager AI - Privilege Escalation
Oct 11, 2024
CVSS 7.8
EPSS 0.00
CVE-2024-33580 HIGH
Lenovo Personal Cloud - Privilege Escalation
Oct 11, 2024
CVSS 7.8
EPSS 0.00
CVE-2024-33579 HIGH
Lenovo Baiying - Privilege Escalation
Oct 11, 2024
CVSS 7.8
EPSS 0.00
CVE-2024-33578 HIGH
Lenovo Leyun - Privilege Escalation
Oct 11, 2024
CVSS 7.8
EPSS 0.00
CVE-2024-8281 HIGH
Lenovo XCC - Authenticated OS Command Injection via SSH Captive Shell
Sep 13, 2024
CVSS 7.2
EPSS 0.00
CVE-2024-8280 HIGH
Lenovo XCC - Authenticated OS Command Injection via Crafted File
Sep 13, 2024
CVSS 7.2
EPSS 0.00
CVE-2024-8279 HIGH
Lenovo ThinkAgile XCC - Authenticated OS Command Injection via File Upload
Sep 13, 2024
CVSS 7.2
EPSS 0.00
CVE-2024-8278 HIGH
Lenovo ThinkAgile XCC - Authenticated OS Command Injection via IPMI Commands
Sep 13, 2024
CVSS 7.2
EPSS 0.00
CVE-2024-8059 MEDIUM
Lenovo ThinkAgile and ThinkSystem XCC - Cleartext Transmission of Sensitive Information in Audit Logs
Sep 13, 2024
CVSS 4.3
EPSS 0.00
CVE-2024-7756 MEDIUM
ThinkPad L390 Yoga & 10w Notebook - Privilege Escalation
Sep 13, 2024
CVSS 6.8
EPSS 0.00
CVE-2024-4550 MEDIUM
Lenovo ThinkSystem/ThinkStation - Buffer Overflow
Sep 13, 2024
CVSS 6.7
EPSS 0.00
Products
thinkcentre_m625q_firmware 28 ideacentre_5-14iob6_firmware 27 ideacentre_g5-14imb05_firmware 27 ideacentre_gaming_5-14iob6_firmware 27 thinkcentre_m75n_firmware 27 v50t-13imb_firmware 27 xclarity_administrator 27 ideacentre_3-07imb05_firmware 26 ideacentre_c5-14imb05_firmware 26 ideacentre_creator_5-14iob6_firmware 26 thinkcentre_m75s_gen_2_firmware 26 thinkcentre_m75t_gen_2_firmware 26 v30a-22iml_firmware 26 v50s-07imb_firmware 26 ideacentre_3-07ada05_firmware 25 ideacentre_g5-14amr05_firmware 25 legion_t7-34imz5_firmware 25 thinkcentre_m70c_firmware 25 thinkcentre_m70q_firmware 25 thinkcentre_m80q_firmware 25 thinkcentre_m80s_firmware 25 thinkcentre_m80t_firmware 25 thinkcentre_m90a_firmware 25 thinkcentre_m90q_tiny_firmware 25 thinkcentre_m90s_firmware 25 thinkedge_se30_firmware 25 v30a-24iml_firmware 25 v50a-22imb_firmware 25 v50a-24imb_firmware 25 v55t_gen_2_13acn_firmware 25
Quick Filters
Critical CVEs With Exploits In CISA KEV