- EPSS 0.37%
- Veröffentlicht 22.07.2020 14:15:14
- Zuletzt bearbeitet 21.11.2024 04:33:22
Incorrect access control in the firmware of Synaptics VFS75xx family fingerprint sensors that include external flash (all versions prior to 2019-11-15) allows a local administrator or physical attacker to compromise the confidentiality of sensor data...
CVE-2019-18619
- EPSS 0.14%
- Veröffentlicht 22.07.2020 14:15:14
- Zuletzt bearbeitet 21.11.2024 04:33:22
Incorrect parameter validation in the synaTee component of Synaptics WBF drivers using an SGX enclave (all versions prior to 2019-11-15) allows a local user to execute arbitrary code in the enclave (that can compromise confidentiality of enclave data...
CVE-2020-8320
- EPSS 0.05%
- Veröffentlicht 09.06.2020 20:15:22
- Zuletzt bearbeitet 21.11.2024 05:38:42
An internal shell was included in BIOS image in some ThinkPad models that could allow escalation of privilege.
CVE-2020-8323
- EPSS 0.05%
- Veröffentlicht 09.06.2020 20:15:22
- Zuletzt bearbeitet 21.11.2024 05:38:42
A potential vulnerability in the SMI callback function used in the Legacy SD driver in some Lenovo ThinkPad, ThinkStation, and Lenovo Notebook models may allow arbitrary code execution.
CVE-2019-10724
- EPSS 0.31%
- Veröffentlicht 29.08.2019 00:15:10
- Zuletzt bearbeitet 21.11.2024 04:19:48
There is a vulnerability with the Dolby DAX2 API system services in which a low-privileged user can terminate arbitrary processes that are running at a higher privilege. The following are affected products and versions: Legion Y520T_Z370 6.0.1.8642, ...