lenovo

488 tracked vulnerabilities.

CVE-2022-48188 MEDIUM
Lenovo IdeaCentre AIO 3 and ThinkCentre Firmware - Out-of-bounds Write
Jun 05, 2023
CVSS 6.7
EPSS 0.00
CVE-2022-48181 MEDIUM
Lenovo IdeaCentre Firmware - Stack-based Buffer Overflow in ErrorMessage Driver
Jun 05, 2023
CVSS 6.7
EPSS 0.00
CVE-2022-4569 HIGH
ThinkPad Hybrid USB-C with USB-A Dock Firmware Update Tool - Privil...
Jun 05, 2023
CVSS 7.8
EPSS 0.00
CVE-2022-4568 HIGH
Lenovo System Update - Privilege Escalation
May 01, 2023
CVSS 7.0
EPSS 0.00
CVE-2022-48186 MEDIUM
Lenovo Baiying < 1.1.4 - Improper Certificate Validation
May 01, 2023
CVSS 6.2
EPSS 0.00
CVE-2022-40137 MEDIUM
Lenovo IdeaCentre Firmware - Buffer Overflow in WMI SMI Handler
Jan 30, 2023
CVSS 6.7
EPSS 0.00
CVE-2022-40136 MEDIUM
Lenovo IdeaCentre and ThinkCentre Firmware - Information Disclosure via SMI Handler SMM Memory Read
Jan 30, 2023
CVSS 4.4
EPSS 0.00
CVE-2022-40135 MEDIUM
Lenovo IdeaCentre and ThinkCentre Firmware - Information Leak via Smart USB Protection SMI Handler
Jan 30, 2023
CVSS 4.4
EPSS 0.00
CVE-2022-40134 MEDIUM
Lenovo IdeaCentre and ThinkCentre Firmware - Information Leak via SMI Set BIOS Password Handler
Jan 30, 2023
CVSS 4.4
EPSS 0.00
CVE-2022-34888 LOW
Lenovo ThinkAgile VX3331 Firmware < 1.80_afbt20n - Authenticated Internal Service Access via Remote Mount Feature
Jan 30, 2023
CVSS 2.7
EPSS 0.00
CVE-2022-34884 HIGH
Lenovo ThinkAgile VX3331 < 1.80_afbt20n DoS via Remote Presence Buffer Overflow
Jan 30, 2023
CVSS 7.2
EPSS 0.01
CVE-2022-3432 MEDIUM
Lenovo IdeaPad Y700-14ISK Firmware - Secure Boot Setting Modification via NVRAM Variable
Jan 26, 2023
CVSS 6.7
EPSS 0.00
CVE-2022-1892 MEDIUM
Lenovo Notebook Firmware - Buffer Overflow in SystemBootManagerDxe Driver
Jan 26, 2023
CVSS 6.7
EPSS 0.00
CVE-2022-1891 MEDIUM
Lenovo ThinkBook and Yoga C640 Firmware - Buffer Overflow in SystemLoadDefaultDxe Driver
Jan 26, 2023
CVSS 6.7
EPSS 0.00
CVE-2022-1890 MEDIUM
Lenovo ThinkBook and Yoga Firmware - Heap-based Buffer Overflow in ReadyBootDxe Driver
Jan 26, 2023
CVSS 6.7
EPSS 0.00
CVE-2022-4816 MEDIUM
Lenovo Safecenter < 7.2.01.0315 - Denial of Service
Jan 23, 2023
CVSS 6.2
EPSS 0.00
CVE-2022-3430 MEDIUM
Lenovo D330-10IGL Firmware - Secure Boot Setting Modification via WMI Setup Driver
Jan 23, 2023
CVSS 6.7
EPSS 0.00
CVE-2022-1109 MEDIUM
Lenovo Leyun < 6.8.21.99 - Denial of Service via Incorrect Default Permissions
Jan 20, 2023
CVSS 5.5
EPSS 0.00
CVE-2022-4435 MEDIUM
ThinkPad X13s Firmware < 1.47 - Out-of-bounds Read in LenovoRemoteConfigUpdateDxe Driver
Jan 05, 2023
CVSS 6.7
EPSS 0.00
CVE-2022-4434 MEDIUM
Lenovo ThinkPad X13s Firmware < 1.47 - Out-of-bounds Read
Jan 05, 2023
CVSS 6.7
EPSS 0.00
CVE-2022-4433 MEDIUM
Lenovo ThinkPad X13s Firmware < 1.47 - Out-of-bounds Read in LenovoSetupConfigDxe Driver
Jan 05, 2023
CVSS 6.7
EPSS 0.00
CVE-2022-4432 MEDIUM
Lenovo ThinkPad X13s Firmware < 1.47 - Out-of-bounds Read in BIOS PersistenceConfigDxe Driver
Jan 05, 2023
CVSS 6.7
EPSS 0.00
CVE-2022-1513 HIGH
Lenovo PCManager < 5.0.10.4191 - Remote Code Execution via Specially Crafted Website
Aug 23, 2022
CVSS 7.3
EPSS 0.00
CVE-2022-1110 MEDIUM
Lenovo Smart Standby Driver < 4.1.50.0 - Denial of Service via Buffer Overflow
May 18, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-1108 MEDIUM
ThinkPad X1 Fold Gen 1 Firmware < N2PET50W - Authenticated Arbitrary Code Execution via SMI Handler Buffer Overflow
Apr 22, 2022
CVSS 6.7
EPSS 0.00