A potential vulnerability in the SMI callback function used to access flash device in some ThinkPad models may allow an attacker with local access and elevated privileges to execute arbitrary code.
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:HLenovo Thinkpad 10
HWLenovowszystkie wersjeLenovo Thinkpad 10 Firmware
OSLenovo< 2021-10-25Lenovo Thinkpad S2 Gen 6
HWLenovowszystkie wersjeLenovo Thinkpad S2 Gen 6 Firmware
OSLenovo< 2021-10-31Lenovo Thinkpad S2 Yoga Gen 6
HWLenovowszystkie wersjeLenovo Thinkpad S2 Yoga Gen 6 Firmware
OSLenovo< 2021-10-31Lenovo Thinkpad T460p
HWLenovowszystkie wersjeLenovo Thinkpad T460p Firmware
OSLenovo< 2021-10-29Lenovo Thinkpad T460s
HWLenovowszystkie wersjeLenovo Thinkpad T460s Firmware
OSLenovo< n1cet84wLenovo Thinkpad T480
HWLenovowszystkie wersjeLenovo Thinkpad T480 Firmware
OSLenovo< n24et65wLenovo Thinkpad T550
HWLenovowszystkie wersjeLenovo Thinkpad T550 Firmware
OSLenovo< n11et54wLenovo Thinkpad T560
HWLenovowszystkie wersjeLenovo Thinkpad T560 Firmware
OSLenovo< n1ket52wLenovo Thinkpad T570
HWLenovowszystkie wersjeLenovo Thinkpad T570 Firmware
OSLenovo< n1vet57wLenovo Thinkpad T580
HWLenovowszystkie wersjeLenovo Thinkpad T580 Firmware
OSLenovo< n27et43wLenovo Thinkpad T590
HWLenovowszystkie wersjeLenovo Thinkpad T590 Firmware
OSLenovo< n2iet96wLenovo Thinkpad W550s
HWLenovowszystkie wersjeLenovo Thinkpad W550s Firmware
OSLenovo< n11et54wLenovo Thinkpad X12 Detachable Gen 1
HWLenovowszystkie wersjeLenovo Thinkpad X12 Detachable Gen 1 Firmware
OSLenovo< 2021-10-31Lenovo Thinkpad X13 Gen 1
HWLenovowszystkie wersjeLenovo Thinkpad X13 Gen 1 Firmware
OSLenovo< n2yet31wLenovo Thinkpad X13 Gen 2
HWLenovowszystkie wersjeLenovo Thinkpad X13 Gen 2 Firmware
OSLenovo< n35et41w
Related vulnerabilities
Incorrect parameter validation in the synaTee component of Synaptics WBF drivers using an SGX enclave (all ver...
In some Lenovo ThinkPads, an unquoted search path vulnerability was found in various versions of the Synaptics...
A local privilege escalation vulnerability was identified in the Realtek audio driver versions prior to 6.0.1....
A vulnerability was reported in some ThinkPad BIOS that could allow a physical or local attacker with elevated...
An SMI handler input validation vulnerability in the ThinkPad X1 Fold Gen 1 could allow an attacker with loca...