HIGHπŸ‡΅πŸ‡± Wersja polska

CVE-2023-4030

CVSS 8.4v3.1pub. 2023-08-17upd. 2024-11-21

A vulnerability was reported in BIOS for ThinkPad P14s Gen 2, P15s Gen 2, T14 Gen 2, and T15 Gen 2 that could cause the system to recover to insecure settings if the BIOS becomes corrupt.

CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Lenovo Thinkpad P14s Gen 2

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Thinkpad P14s Gen 2 Firmware

    OS
    Lenovo
    wszystkie wersje
  • Lenovo Thinkpad P15s Gen 2

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Thinkpad P15s Gen 2 Firmware

    OS
    Lenovo
    wszystkie wersje
  • Lenovo Thinkpad T14 Gen 2

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Thinkpad T14 Gen 2 Firmware

    OS
    Lenovo
    wszystkie wersje
  • Lenovo Thinkpad T15 Gen 2

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Thinkpad T15 Gen 2 Firmware

    OS
    Lenovo
    wszystkie wersje
πŸ”΅
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2022-4574MEDIUM6.7ten sam produkt

An SMI handler input validation vulnerability in the BIOS of some ThinkPad models could allow an attacker wit...

CVE-2022-48189MEDIUM6.7ten sam produkt

An SMM driver input validation vulnerability in the BIOS of some ThinkPad models could allow an attacker with ...

CVE-2023-4029MEDIUM6.7ten sam produkt

A buffer overflow has been identified in the BoardUpdateAcpiDxe driver in some Lenovo ThinkPad products which ...

CVE-2023-2290MEDIUM6.4ten sam produkt

A potential vulnerability in the LenovoFlashDeviceInterface SMI handler may allow an attacker with local acces...

CVE-2021-3462MEDIUM5.5ten sam produkt

A privilege escalation vulnerability in Lenovo Power Management Driver for Windows 10, prior to version 1.67.1...

CVE-2023-4030 β€” Lenovo β€” Thinkpad P14S Gen 2 β€” HIGH β€” CVSS 8.4 | CVEbaza.pl