CVEInsight.

Free vulnerability intelligence for developers, security teams, and researchers. Data sourced from public databases for informational purposes only.

Explore

Legal

CVE data sourced from NVD / NIST & public disclosures.

lenovo

thinkcentre_m70q_gen_3_firmware

4 known vulnerabilities · sorted by CVSS score

CVE-2022-48181

MEDIUM6.7

An ErrorMessage driver stack-based buffer overflow vulnerability in BIOS of some ThinkPad models could allow an attacker with local access to elevate their privileges and execute arbitrary code.

lenovo / ideacentre_c5-14imb05_firmware+121

Local

Published Jun 5, 2023

CVE-2022-40135

MEDIUM4.4

An information leak vulnerability in the Smart USB Protection SMI Handler in some Lenovo models may allow an attacker with local access and elevated privileges to read SMM memory.

lenovo / ideacentre_c5-14imb05_firmware+138

Local

Published Jan 30, 2023

CVE-2022-40136

MEDIUM4.4

An information leak vulnerability in SMI Handler used to configure platform settings over WMI in some Lenovo models may allow an attacker with local access and elevated privileges to read SMM memory.

lenovo / ideacentre_c5-14imb05_firmware+149

Local

Published Jan 30, 2023

CVE-2022-40134

MEDIUM4.4

An information leak vulnerability in the SMI Set BIOS Password SMI Handler in some Lenovo models may allow an attacker with local access and elevated privileges to read SMM memory.

lenovo / ideacentre_c5-14imb05_firmware+339

Local

Published Jan 30, 2023