CVE-2023-43571
- EPSS 0.04%
- Published 08.11.2023 23:15:08
- Last modified 21.11.2024 08:24:23
A buffer overflow was reported in the BiosExtensionLoader module in some Lenovo Desktop products that may allow a local attacker with elevated privileges to execute arbitrary code.
CVE-2023-43570
- EPSS 0.05%
- Published 08.11.2023 22:15:10
- Last modified 21.11.2024 08:24:23
A potential vulnerability was reported in the SMI callback function of the OemSmi driver that may allow a local attacker with elevated permissions to execute arbitrary code.
CVE-2023-43569
- EPSS 0.07%
- Published 08.11.2023 22:15:09
- Last modified 21.11.2024 08:24:22
A buffer overflow was reported in the OemSmi module in some Lenovo Desktop products that may allow a local attacker with elevated privileges to execute arbitrary code.
CVE-2023-43568
- EPSS 0.07%
- Published 08.11.2023 22:15:09
- Last modified 21.11.2024 08:24:22
A buffer over-read was reported in the LemSecureBootForceKey module in some Lenovo Desktop products that may allow a local attacker with elevated privileges to disclose sensitive information.
CVE-2023-43567
- EPSS 0.07%
- Published 08.11.2023 22:15:09
- Last modified 21.11.2024 08:24:22
A buffer overflow was reported in the LemSecureBootForceKey module in some Lenovo Desktop products that may allow a local attacker with elevated privileges to execute arbitrary code.
CVE-2022-48181
- EPSS 0.03%
- Published 05.06.2023 22:15:11
- Last modified 21.11.2024 07:32:55
An ErrorMessage driver stack-based buffer overflow vulnerability in BIOS of some ThinkPad models could allow an attacker with local access to elevate their privileges and execute arbitrary code.
CVE-2022-40137
- EPSS 0.04%
- Published 30.01.2023 22:15:12
- Last modified 21.11.2024 07:20:57
A buffer overflow in the WMI SMI Handler in some Lenovo models may allow an attacker with local access and elevated privileges to execute arbitrary code.