CVEInsight.

Free vulnerability intelligence for developers, security teams, and researchers. Data sourced from public databases for informational purposes only.

Explore

Legal

CVE data sourced from NVD / NIST & public disclosures.

lenovo

thinkcentre_m900x_firmware

4 known vulnerabilities · sorted by CVSS score

CVE-2021-4211

MEDIUM6.7

A potential vulnerability in the SMI callback function used in the SMBIOS event log driver in some Lenovo Desktop, ThinkStation, and ThinkEdge models may allow an attacker with local access and elevated privileges to execute arbitrary code.

lenovo / a340-22icb_firmware+52

Local

Published Apr 22, 2022

CVE-2021-3719

MEDIUM6.7

A potential vulnerability in the SMI callback function that saves and restore boot script tables used for resuming from sleep state in some ThinkCentre and ThinkStation models may allow an attacker with local access and elevated privileges to execute arbitrary code.

lenovo / thinkcentre_e93_firmware+19

Local

Published Nov 12, 2021

CVE-2021-4210

MEDIUM6.7

A potential vulnerability in the SMI callback function used in the NVME driver in some Lenovo Desktop, ThinkStation, and ThinkEdge models may allow an attacker with local access and elevated privileges to execute arbitrary code.

lenovo / stadia_ggp-120_firmware+31

Local

Published Apr 22, 2022

CVE-2022-40136

MEDIUM4.4

An information leak vulnerability in SMI Handler used to configure platform settings over WMI in some Lenovo models may allow an attacker with local access and elevated privileges to read SMM memory.

lenovo / ideacentre_c5-14imb05_firmware+149

Local

Published Jan 30, 2023