← Back

Thinkcentre M73p Firmware

thinkcentre_m73p_firmware

Vendor: Lenovo • 7 CVEs

CVEs (7)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2021-3719
1Lenovo
20Thinkcentre E93 Firmware
Thinkcentre M4500q FirmwareThinkcentre M600 Firmware+17 more
Nov 21, 2024
Nov 12, 2021
N/A· v4
6.7 MEDIUM· v3
7.2 HIGH· v2
A potential vulnerability in the SMI callback function that saves and restore boot script tables used for resuming from sleep state in some ThinkCentre and ThinkStation models may allow an attacker with local access and...Show more
A potential vulnerability in the SMI callback function that saves and restore boot script tables used for resuming from sleep state in some ThinkCentre and ThinkStation models may allow an attacker with local access and elevated privileges to execute arbitrary code.Show less
CVE-2019-6190
1Lenovo
182510 15ikl Firmware
510s 08ikl FirmwareA340 22 Iwl Firmware+179 more
Nov 21, 2024
Feb 14, 2020
N/A· v4
5.5 MEDIUM· v3
2.1 LOW· v2
Lenovo was notified of a potential denial of service vulnerability, affecting various versions of BIOS for Lenovo Desktop, Desktop - All in One, and ThinkStation, that could cause PCRs to be cleared intermittently after...Show more
Lenovo was notified of a potential denial of service vulnerability, affecting various versions of BIOS for Lenovo Desktop, Desktop - All in One, and ThinkStation, that could cause PCRs to be cleared intermittently after resuming from sleep (S3) on systems with Intel TXT enabled.Show less
CVE-2019-6188
1Lenovo
392130 14ikb Firmware
130 15ikb Firmware330 14ikb Firmware+389 more
Nov 21, 2024
Nov 12, 2019
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
The BIOS tamper detection mechanism was not triggered in Lenovo ThinkPad T460p, BIOS versions up to R07ET90W, and T470p, BIOS versions up to R0FET50W, which may allow for unauthorized access.
CVE-2019-6172
1Lenovo
392130 14ikb Firmware
130 15ikb Firmware330 14ikb Firmware+389 more
Nov 21, 2024
Nov 12, 2019
N/A· v4
6.4 MEDIUM· v3
4.4 MEDIUM· v2
A potential vulnerability in the SMI callback function used in Legacy USB driver using passed parameter without sufficient checking in some Lenovo ThinkPad models may allow arbitrary code execution.
CVE-2019-6170
1Lenovo
392130 14ikb Firmware
130 15ikb Firmware330 14ikb Firmware+389 more
Nov 21, 2024
Nov 12, 2019
N/A· v4
6.4 MEDIUM· v3
4.4 MEDIUM· v2
A potential vulnerability in the SMI callback function used in the Legacy USB driver using boot services structure in runtime phase in some Lenovo ThinkPad models may allow arbitrary code execution.
CVE-2019-6156
1Lenovo
177330 14igm Firmware
330 15igm Firmware510 15ikl Firmware+174 more
Nov 21, 2024
Apr 10, 2019
N/A· v4
3.3 LOW· v3
2.1 LOW· v2
In Lenovo systems, SMM BIOS Write Protection is used to prevent writes to SPI Flash. While this provides sufficient protection, an additional layer of protection is provided by SPI Protected Range Registers (PRx). Lenovo...Show more
In Lenovo systems, SMM BIOS Write Protection is used to prevent writes to SPI Flash. While this provides sufficient protection, an additional layer of protection is provided by SPI Protected Range Registers (PRx). Lenovo was notified that after resuming from S3 sleep mode in various versions of BIOS for Lenovo systems, the PRx is not set. This does not impact the SMM BIOS Write Protection, which keeps systems protected.Show less
CVE-2017-3753
1Lenovo
11163 Firmware
H50 30g FirmwareIdeacentre 300 20ish Firmware+108 more
May 13, 2026
Aug 10, 2017
N/A· v4
6.8 MEDIUM· v3
7.2 HIGH· v2
A vulnerability has been identified in some Lenovo products that use UEFI (BIOS) code developed by American Megatrends, Inc. (AMI). With this vulnerability, conditions exist where an attacker with administrative privileg...Show more
A vulnerability has been identified in some Lenovo products that use UEFI (BIOS) code developed by American Megatrends, Inc. (AMI). With this vulnerability, conditions exist where an attacker with administrative privileges or physical access to a system may be able to run specially crafted code that can allow them to bypass system protections such as Device Guard and Hyper-V.Show less