CVEInsight.

Free vulnerability intelligence for developers, security teams, and researchers. Data sourced from public databases for informational purposes only.

Explore

Legal

CVE data sourced from NVD / NIST & public disclosures.

lenovo

thinkpad_l13_yoga_gen_3_firmware

4 known vulnerabilities · sorted by CVSS score

CVE-2023-4029

MEDIUM6.7

A buffer overflow has been identified in the BoardUpdateAcpiDxe driver in some Lenovo ThinkPad products which may allow an attacker with local access and elevated privileges to execute arbitrary code.

lenovo / k14_type_21cu_firmware+25

Local

Published Aug 17, 2023

CVE-2022-48189

MEDIUM6.7

An SMM driver input validation vulnerability in the BIOS of some ThinkPad models could allow an attacker with local access and elevated privileges to execute arbitrary code.

lenovo / thinkpad_e14_firmware+100

Local

Published Oct 30, 2023

CVE-2023-5078

MEDIUM6.7

A vulnerability was reported in some ThinkPad BIOS that could allow a physical or local attacker with elevated privileges to tamper with BIOS firmware.

lenovo / thinkpad_x13_gen_3_firmware+19

Local

Published Nov 8, 2023

CVE-2023-2290

MEDIUM6.4

A potential vulnerability in the LenovoFlashDeviceInterface SMI handler may allow an attacker with local access and elevated privileges to execute arbitrary code.

lenovo / thinkpad_e14_firmware+124

Local

Published Jun 26, 2023