Known Vulnerabilities for products from Lenovo
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Lenovo".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Additional devices specifications by Lenovo can be found at device.report : Lenovo
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2023-45079 | A memory leakage vulnerability was reported in the NvmramSmm SMM driver that may allow a local attacker with elevated privile... | 6.7 - MEDIUM | 2023-11-08 | 2023-11-16 |
| CVE-2023-45078 | A memory leakage vulnerability was reported in the DustFilterAlertSmm SMM driver that may allow a local attacker with elevate... | 6.7 - MEDIUM | 2023-11-08 | 2023-11-16 |
| CVE-2023-45077 | A memory leakage vulnerability was reported in the 534D0740 DXE driver that may allow a local attacker with elevated privileg... | 6.7 - MEDIUM | 2023-11-08 | 2023-11-16 |
| CVE-2023-45076 | A memory leakage vulnerability was reported in the 534D0140 DXE driver that may allow a local attacker with elevated privileg... | 6.7 - MEDIUM | 2023-11-08 | 2023-11-16 |
| CVE-2023-45075 | A memory leakage vulnerability was reported in the SWSMI_Shadow DXE driver that may allow a local attacker with elevated priv... | 6.7 - MEDIUM | 2023-11-08 | 2023-11-16 |
| CVE-2023-43581 | A buffer overflow was reported in the Update_WMI module in some Lenovo Desktop products that may allow a local attacker with ... | 6.7 - MEDIUM | 2023-11-08 | 2023-11-16 |
| CVE-2023-43580 | A buffer overflow was reported in the SmuV11DxeVMR module in some Lenovo Desktop products that may allow a local attacker wit... | 6.7 - MEDIUM | 2023-11-08 | 2023-11-16 |
| CVE-2023-43579 | A buffer overflow was reported in the SmuV11Dxe driver in some Lenovo Desktop products that may allow a local attacker with e... | 6.7 - MEDIUM | 2023-11-08 | 2023-11-16 |
| CVE-2023-43578 | A buffer overflow was reported in the SmiFlash module in some Lenovo Desktop products that may allow a local attacker with el... | 6.7 - MEDIUM | 2023-11-08 | 2023-11-16 |
| CVE-2023-43577 | A buffer overflow was reported in the ReFlash module in some Lenovo Desktop products that may allow a local attacker with ele... | 6.7 - MEDIUM | 2023-11-08 | 2023-11-16 |
| CVE-2023-43576 | A buffer overflow was reported in the WMISwSmi module in some Lenovo Desktop products that may allow a local attacker with el... | 6.7 - MEDIUM | 2023-11-08 | 2023-11-16 |
| CVE-2023-43575 | A buffer overflow was reported in the UltraFunctionTable module in some Lenovo Desktop products that may allow a local attack... | 6.7 - MEDIUM | 2023-11-08 | 2023-11-16 |
| CVE-2023-43574 | A buffer over-read was reported in the LEMALLDriversConnectedEventHook module in some Lenovo Desktop products that may allow ... | 4.4 - MEDIUM | 2023-11-08 | 2023-11-15 |
| CVE-2023-43573 | A buffer overflow was reported in the LEMALLDriversConnectedEventHook module in some Lenovo Desktop products that may allow a... | 6.7 - MEDIUM | 2023-11-08 | 2023-11-15 |
| CVE-2023-43572 | A buffer over-read was reported in the BiosExtensionLoader module in some Lenovo Desktop products that may allow a local atta... | 4.4 - MEDIUM | 2023-11-08 | 2023-11-15 |
| CVE-2023-43571 | A buffer overflow was reported in the BiosExtensionLoader module in some Lenovo Desktop products that may allow a local attac... | 6.7 - MEDIUM | 2023-11-08 | 2023-11-15 |
| CVE-2023-43570 | A potential vulnerability was reported in the SMI callback function of the OemSmi driver that may allow a local attacker wit... | 6.7 - MEDIUM | 2023-11-08 | 2023-11-16 |
| CVE-2023-43569 | A buffer overflow was reported in the OemSmi module in some Lenovo Desktop products that may allow a local attacker with elev... | 6.7 - MEDIUM | 2023-11-08 | 2023-11-16 |
| CVE-2023-43568 | A buffer over-read was reported in the LemSecureBootForceKey module in some Lenovo Desktop products that may allow a local at... | 4.4 - MEDIUM | 2023-11-08 | 2023-11-16 |
| CVE-2023-43567 | A buffer overflow was reported in the LemSecureBootForceKey module in some Lenovo Desktop products that may allow a local att... | 6.7 - MEDIUM | 2023-11-08 | 2023-11-16 |
Known software with vulnerabilities from Lenovo
| Type | Vendor | Product | Version |
|---|---|---|---|
| Hardware | Lenovo | 130-14ast | - |
| Operating System | Lenovo | 130-14ast Firmware | - |
| Hardware | Lenovo | 130-14ikb | - |
| Operating System | Lenovo | 130-14ikb Firmware | - |
| Hardware | Lenovo | 130-15ast | - |
| Operating System | Lenovo | 130-15ast Firmware | - |
| Hardware | Lenovo | 130-15ikb | - |
| Operating System | Lenovo | 130-15ikb Firmware | - |
| Hardware | Lenovo | 14iwl | - |
| Operating System | Lenovo | 14iwl Firmware | - |
| Hardware | Lenovo | 20a7 | - |
| Operating System | Lenovo | 20a7 Firmware | - |
| Hardware | Lenovo | 20a8 | - |
| Operating System | Lenovo | 20a8 Firmware | - |
| Hardware | Lenovo | 20a9 | - |
| Operating System | Lenovo | 20a9 Firmware | - |
| Hardware | Lenovo | 20aa | - |
| Operating System | Lenovo | 20aa Firmware | - |
| Hardware | Lenovo | 20ab | - |
| Operating System | Lenovo | 20ab Firmware | - |