lenovo

482 tracked vulnerabilities.

CVE-2022-40136 MEDIUM
Lenovo IdeaCentre and ThinkCentre Firmware - Information Disclosure via SMI Handler SMM Memory Read
Jan 30, 2023
CVSS 4.4
EPSS 0.00
CVE-2022-40135 MEDIUM
Lenovo IdeaCentre and ThinkCentre Firmware - Information Leak via Smart USB Protection SMI Handler
Jan 30, 2023
CVSS 4.4
EPSS 0.00
CVE-2022-40134 MEDIUM
Lenovo IdeaCentre and ThinkCentre Firmware - Information Leak via SMI Set BIOS Password Handler
Jan 30, 2023
CVSS 4.4
EPSS 0.00
CVE-2022-34888 LOW
Lenovo ThinkAgile VX3331 Firmware < 1.80_afbt20n - Authenticated Internal Service Access via Remote Mount Feature
Jan 30, 2023
CVSS 2.7
EPSS 0.00
CVE-2022-34884 HIGH
Lenovo ThinkAgile VX3331 < 1.80_afbt20n DoS via Remote Presence Buffer Overflow
Jan 30, 2023
CVSS 7.2
EPSS 0.01
CVE-2022-3432 MEDIUM
Lenovo IdeaPad Y700-14ISK Firmware - Secure Boot Setting Modification via NVRAM Variable
Jan 26, 2023
CVSS 6.7
EPSS 0.00
CVE-2022-1892 MEDIUM
Lenovo Notebook Firmware - Buffer Overflow in SystemBootManagerDxe Driver
Jan 26, 2023
CVSS 6.7
EPSS 0.00
CVE-2022-1891 MEDIUM
Lenovo ThinkBook and Yoga C640 Firmware - Buffer Overflow in SystemLoadDefaultDxe Driver
Jan 26, 2023
CVSS 6.7
EPSS 0.00
CVE-2022-1890 MEDIUM
Lenovo ThinkBook and Yoga Firmware - Heap-based Buffer Overflow in ReadyBootDxe Driver
Jan 26, 2023
CVSS 6.7
EPSS 0.00
CVE-2022-4816 MEDIUM
Lenovo Safecenter < 7.2.01.0315 - Denial of Service
Jan 23, 2023
CVSS 6.2
EPSS 0.00
CVE-2022-3430 MEDIUM
Lenovo D330-10IGL Firmware - Secure Boot Setting Modification via WMI Setup Driver
Jan 23, 2023
CVSS 6.7
EPSS 0.00
CVE-2022-1109 MEDIUM
Lenovo Leyun < 6.8.21.99 - Denial of Service via Incorrect Default Permissions
Jan 20, 2023
CVSS 5.5
EPSS 0.00
CVE-2022-4435 MEDIUM
ThinkPad X13s Firmware < 1.47 - Out-of-bounds Read in LenovoRemoteConfigUpdateDxe Driver
Jan 05, 2023
CVSS 6.7
EPSS 0.00
CVE-2022-4434 MEDIUM
Lenovo ThinkPad X13s Firmware < 1.47 - Out-of-bounds Read
Jan 05, 2023
CVSS 6.7
EPSS 0.00
CVE-2022-4433 MEDIUM
Lenovo ThinkPad X13s Firmware < 1.47 - Out-of-bounds Read in LenovoSetupConfigDxe Driver
Jan 05, 2023
CVSS 6.7
EPSS 0.00
CVE-2022-4432 MEDIUM
Lenovo ThinkPad X13s Firmware < 1.47 - Out-of-bounds Read in BIOS PersistenceConfigDxe Driver
Jan 05, 2023
CVSS 6.7
EPSS 0.00
CVE-2022-1513 HIGH
Lenovo PCManager < 5.0.10.4191 - Remote Code Execution via Specially Crafted Website
Aug 23, 2022
CVSS 7.3
EPSS 0.01
CVE-2022-1110 MEDIUM
Lenovo Smart Standby Driver < 4.1.50.0 - Denial of Service via Buffer Overflow
May 18, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-1108 MEDIUM
ThinkPad X1 Fold Gen 1 Firmware < N2PET50W - Authenticated Arbitrary Code Execution via SMI Handler Buffer Overflow
Apr 22, 2022
CVSS 6.7
EPSS 0.00
CVE-2022-1107 MEDIUM
Lenovo ThinkPad Firmware - Privilege Escalation via SMM Boot Services Handler
Apr 22, 2022
CVSS 6.7
EPSS 0.00
CVE-2022-0636 MEDIUM
Lenovo Thin Installer <1.3.0039 - DoS
Apr 22, 2022
CVSS 5.0
EPSS 0.00
CVE-2022-0354 HIGH
Lenovo System Update <2022-02-25 - Privilege Escalation
Apr 22, 2022
CVSS 7.3
EPSS 0.00
CVE-2022-0192 HIGH
Lenovo PCManager <4.0.40.2175 - Privilege Escalation
Apr 22, 2022
CVSS 7.3
EPSS 0.00
CVE-2021-42205 MEDIUM
ELAN Miniport <24.21.51.2 - Use After Free
Nov 07, 2022
CVSS 4.7
EPSS 0.00
CVE-2021-42852 HIGH
Lenovo Personal Cloud Storage A1/T1/X1/T2/T2Pro Firmware < 5.3.8.x1 - Authenticated OS Command Injection
May 18, 2022
CVSS 8.0
EPSS 0.00
Products
thinkcentre_m625q_firmware 28 ideacentre_5-14iob6_firmware 27 ideacentre_g5-14imb05_firmware 27 ideacentre_gaming_5-14iob6_firmware 27 thinkcentre_m75n_firmware 27 v50t-13imb_firmware 27 xclarity_administrator 27 ideacentre_3-07imb05_firmware 26 ideacentre_c5-14imb05_firmware 26 ideacentre_creator_5-14iob6_firmware 26 thinkcentre_m75s_gen_2_firmware 26 thinkcentre_m75t_gen_2_firmware 26 v30a-22iml_firmware 26 v50s-07imb_firmware 26 ideacentre_3-07ada05_firmware 25 ideacentre_g5-14amr05_firmware 25 legion_t7-34imz5_firmware 25 thinkcentre_m70c_firmware 25 thinkcentre_m70q_firmware 25 thinkcentre_m80q_firmware 25 thinkcentre_m80s_firmware 25 thinkcentre_m80t_firmware 25 thinkcentre_m90a_firmware 25 thinkcentre_m90q_tiny_firmware 25 thinkcentre_m90s_firmware 25 thinkedge_se30_firmware 25 v30a-24iml_firmware 25 v50a-22imb_firmware 25 v50a-24imb_firmware 25 v55t_gen_2_13acn_firmware 25
Quick Filters
Critical CVEs With Exploits In CISA KEV