Lenovo

Ideacentre Aio 3 24iap7 Firmware

16 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.4

CVE-2023-43572

  • EPSS 0.04%
  • Veröffentlicht 08.11.2023 23:15:08
  • Zuletzt bearbeitet 21.11.2024 08:24:23

A buffer over-read was reported in the BiosExtensionLoader module in some Lenovo Desktop products that may allow a local attacker with elevated privileges to disclose sensitive information.

6.7

CVE-2023-43570

  • EPSS 0.05%
  • Veröffentlicht 08.11.2023 22:15:10
  • Zuletzt bearbeitet 21.11.2024 08:24:23

A potential vulnerability was reported in the SMI callback function of the OemSmi driver that may allow a local attacker with elevated permissions to execute arbitrary code.

6.7

CVE-2023-43567

  • EPSS 0.07%
  • Veröffentlicht 08.11.2023 22:15:09
  • Zuletzt bearbeitet 21.11.2024 08:24:22

A buffer overflow was reported in the LemSecureBootForceKey module in some Lenovo Desktop products that may allow a local attacker with elevated privileges to execute arbitrary code.

4.4

CVE-2023-43568

  • EPSS 0.07%
  • Veröffentlicht 08.11.2023 22:15:09
  • Zuletzt bearbeitet 21.11.2024 08:24:22

A buffer over-read was reported in the LemSecureBootForceKey module in some Lenovo Desktop products that may allow a local attacker with elevated privileges to disclose sensitive information.

6.7

CVE-2023-43569

  • EPSS 0.07%
  • Veröffentlicht 08.11.2023 22:15:09
  • Zuletzt bearbeitet 21.11.2024 08:24:22

A buffer overflow was reported in the OemSmi module in some Lenovo Desktop products that may allow a local attacker with elevated privileges to execute arbitrary code. 

7.8

CVE-2022-48181

  • EPSS 0.03%
  • Veröffentlicht 05.06.2023 22:15:11
  • Zuletzt bearbeitet 21.11.2024 07:32:55

An ErrorMessage driver stack-based buffer overflow vulnerability in BIOS of some ThinkPad models could allow an attacker with local access to elevate their privileges and execute arbitrary code.