← Back

Thinkbook 15p G2 Ith Firmware

thinkbook_15p_g2_ith_firmware

Vendor: Lenovo • 7 CVEs

CVEs (7)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2022-3746
1Lenovo
87Ideapad 1 14ijl7 Firmware
Ideapad 1 15ijl7 FirmwareIdeapad 1 14iau7 Firmware+84 more
Nov 21, 2024
Aug 23, 2023
N/A· v4
6.7 MEDIUM· v3
N/A· v2
A potential vulnerability was discovered in LCFC BIOS for some Lenovo consumer notebook models that could allow a local attacker with elevated privileges to cause some peripherals to work abnormally due to an exposed Emb...Show more
A potential vulnerability was discovered in LCFC BIOS for some Lenovo consumer notebook models that could allow a local attacker with elevated privileges to cause some peripherals to work abnormally due to an exposed Embedded Controller (EC) interface.Show less
CVE-2022-3745
1Lenovo
87Ideapad 1 14ijl7 Firmware
Ideapad 1 15ijl7 FirmwareIdeapad 1 14iau7 Firmware+84 more
Nov 21, 2024
Aug 23, 2023
N/A· v4
4.4 MEDIUM· v3
N/A· v2
A potential vulnerability was discovered in LCFC BIOS for some Lenovo consumer notebook models that could allow a local attacker with elevated privileges to view incoming and returned data from SMI.
CVE-2022-3744
1Lenovo
87Ideapad 1 14ijl7 Firmware
Ideapad 1 15ijl7 FirmwareIdeapad 1 14iau7 Firmware+84 more
Nov 21, 2024
Aug 23, 2023
N/A· v4
6.7 MEDIUM· v3
N/A· v2
A potential vulnerability was discovered in LCFC BIOS for some Lenovo consumer notebook models that could allow a local attacker with elevated privileges to unlock UEFI variables due to a hard-coded SMI handler credentia...Show more
A potential vulnerability was discovered in LCFC BIOS for some Lenovo consumer notebook models that could allow a local attacker with elevated privileges to unlock UEFI variables due to a hard-coded SMI handler credential.Show less
CVE-2022-3743
1Lenovo
87Ideapad 1 14ijl7 Firmware
Ideapad 1 15ijl7 FirmwareIdeapad 1 14iau7 Firmware+84 more
Nov 21, 2024
Aug 23, 2023
N/A· v4
4.4 MEDIUM· v3
N/A· v2
A potential vulnerability was discovered in LCFC BIOS for some Lenovo consumer notebook models that could allow a local attacker with elevated privileges under certain conditions the ability to enumerate Embedded Control...Show more
A potential vulnerability was discovered in LCFC BIOS for some Lenovo consumer notebook models that could allow a local attacker with elevated privileges under certain conditions the ability to enumerate Embedded Controller (EC) commands.Show less
CVE-2022-3742
1Lenovo
87Ideapad 1 14ijl7 Firmware
Ideapad 1 15ijl7 FirmwareIdeapad 1 14iau7 Firmware+84 more
Nov 21, 2024
Aug 23, 2023
N/A· v4
6.7 MEDIUM· v3
N/A· v2
A potential vulnerability was discovered in LCFC BIOS for some Lenovo consumer notebook models that could allow a local attacker with elevated privileges to execute arbitrary code due to improper buffer validation.
CVE-2023-34419
1Lenovo
30Legion 5 15ach6 Firmware
Legion 5 15ach6a FirmwareLegion 5 15ach6h Firmware+27 more
Nov 21, 2024
Aug 17, 2023
N/A· v4
6.7 MEDIUM· v3
N/A· v2
A buffer overflow has been identified in the SetupUtility driver in some Lenovo Notebook products which may allow an attacker with local access and elevated privileges to execute arbitrary code.
CVE-2022-3430
1Lenovo
44D330 10igl Firmware
Ideapad 5 Pro 16arh7 FirmwareIdeapad 5 Pro 16iah7 Firmware+41 more
Nov 21, 2024
Jan 23, 2023
N/A· v4
6.7 MEDIUM· v3
N/A· v2
A potential vulnerability in the WMI Setup driver on some consumer Lenovo Notebook devices may allow an attacker with elevated privileges to modify secure boot setting by modifying an NVRAM variable.