CVEs (5)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
1Lenovo 17214iwl Firmware 330 14ast Firmware330 15ast Firmware+169 moreNov 21, 2024 Jun 9, 2020 N/A· v4 6.7 MEDIUM· v3 4.6 MEDIUM· v2 A potential vulnerability in the SMI callback function used in the Legacy SD driver in some Lenovo ThinkPad, ThinkStation, and Lenovo Notebook models may allow arbitrary code execution. |
1Lenovo 392130 14ikb Firmware 130 15ikb Firmware330 14ikb Firmware+389 moreNov 21, 2024 Nov 12, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 The BIOS tamper detection mechanism was not triggered in Lenovo ThinkPad T460p, BIOS versions up to R07ET90W, and T470p, BIOS versions up to R0FET50W, which may allow for unauthorized access. |
1Lenovo 392130 14ikb Firmware 130 15ikb Firmware330 14ikb Firmware+389 moreNov 21, 2024 Nov 12, 2019 N/A· v4 6.4 MEDIUM· v3 4.4 MEDIUM· v2 A potential vulnerability in the SMI callback function used in Legacy USB driver using passed parameter without sufficient checking in some Lenovo ThinkPad models may allow arbitrary code execution. |
1Lenovo 392130 14ikb Firmware 130 15ikb Firmware330 14ikb Firmware+389 moreNov 21, 2024 Nov 12, 2019 N/A· v4 6.4 MEDIUM· v3 4.4 MEDIUM· v2 A potential vulnerability in the SMI callback function used in the Legacy USB driver using boot services structure in runtime phase in some Lenovo ThinkPad models may allow arbitrary code execution. |
1Lenovo 59Synaptics Thinkpad Ultranav Driver Thiankpad L430 FirmwareThiankpad L530 Firmware+56 moreNov 21, 2024 Jan 24, 2019 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 In some Lenovo ThinkPads, an unquoted search path vulnerability was found in various versions of the Synaptics Pointing Device driver which could allow unauthorized code execution as a low privilege user. |