Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
lenovo access support vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-2240
The IBM Lenovo Access Support acpRunner ActiveX control, as distributed in acpcontroller.dll prior to 1.2.8.0 and possibly acpir.dll prior to 1.0.0.9 (Automated Solutions 1.0 before fix pack 1), does not properly validate digital signatures of downloaded software, which makes it ...
Lenovo Access Support
Lenovo Automated Solutions 1.0
NA
CVE-2007-2928
Format string vulnerability in the IBM Lenovo Access Support acpRunner ActiveX control, as distributed in acpcontroller.dll prior to 1.2.8.0 and possibly acpir.dll prior to 1.0.0.9 (Automated Solutions 1.0 before fix pack 1), allows remote malicious users to execute arbitrary cod...
Lenovo Access Support
Lenovo Automated Solutions 1.0
NA
CVE-2007-2929
The IBM Lenovo Access Support acpRunner ActiveX control, as distributed in acpcontroller.dll prior to 1.2.8.0 and possibly acpir.dll prior to 1.0.0.9 (Automated Solutions 1.0 before fix pack 1), exposes unsafe methods to arbitrary web domains, which allows remote malicious users ...
Lenovo Access Support
Lenovo Automated Solutions 1.0
NA
CVE-2009-0215
Stack-based buffer overflow in the GetXMLValue method in the IBM Access Support ActiveX control in IbmEgath.dll, as distributed on IBM and Lenovo computers, allows remote malicious users to execute arbitrary code via unspecified vectors.
Ibm Access Support Activex Control 3.20.284.0
1 EDB exploit
6
CVSSv3
CVE-2019-18618
Incorrect access control in the firmware of Synaptics VFS75xx family fingerprint sensors that include external flash (all versions before 2019-11-15) allows a local administrator or physical malicious user to compromise the confidentiality of sensor data via injection of an unver...
Synaptics Vfs75xx Firmware 5.1.5.51
Synaptics Vfs75xx Firmware 5.1.337.26
Synaptics Vfs75xx Firmware 5.1.3507.26
Synaptics Vfs75xx Firmware 5.2.320.26
Synaptics Vfs75xx Firmware 5.2.524.26
Synaptics Vfs75xx Firmware 5.2.3109.26
Synaptics Vfs75xx Firmware 5.2.3530.26
Synaptics Vfs75xx Firmware 5.2.5024.26
Synaptics Vfs75xx Firmware 5.3.3541.26
Synaptics Vfs75xx Firmware 5.5.4.1116
Synaptics Vfs75xx Firmware 5.5.8.1092
Synaptics Vfs75xx Firmware 5.5.10.1100
Synaptics Vfs75xx Firmware 5.5.10.1106
Synaptics Vfs75xx Firmware 5.5.17.1099
Synaptics Vfs75xx Firmware 5.5.17.1102
Synaptics Vfs75xx Firmware 5.5.35.1058
Synaptics Vfs75xx Firmware 5.5.502.79
Synaptics Vfs75xx Firmware 5.5.512.1051
Synaptics Vfs75xx Firmware 5.5.2734.1050
Synaptics Vfs75xx Firmware 5.5.2810.1050
Lenovo Thinkpad 25 Firmware
Lenovo Thankpad A475 Firmware
7.3
CVSSv3
CVE-2019-0164
Improper permissions in the installer for Intel(R) Turbo Boost Max Technology 3.0 driver version 1.0.0.1035 and before may allow an authenticated user to potentially enable escalation of privilege via local access.
Intel Turbo Boost Max Technology 3.0
Lenovo Thinkstation P410 Firmware -
Lenovo Thinkstation P510 Firmware -
Lenovo Thinkstation P710 Firmware -
Lenovo Thinkstation P910 Firmware -
7.4
CVSSv3
CVE-2019-0130
Reflected XSS in web interface for Intel(R) Accelerated Storage Manager in Intel(R) RSTe before version 5.5.0.2015 may allow an unauthenticated user to potentially enable denial of service via network access.
Intel Rapid Storage Technology Enterprise
Lenovo Thinkstation P520 Firmware -
Lenovo Thinkstation P520c Firmware -
Lenovo Thinkstation P720 Firmware -
Lenovo Thinkstation P920 Firmware -
5.3
CVSSv3
CVE-2021-3956
A read-only authentication bypass vulnerability was reported in the Third Quarter 2021 release of Lenovo XClarity Controller (XCC) firmware affecting XCC devices configured in LDAP Authentication Only Mode and using an LDAP server that supports “unauthenticated bind”,...
Lenovo Xclarity Controller
NA
CVE-2006-4221
Stack-based buffer overflow in the IBM Access Support eGatherer ActiveX control prior to 3.20.0284.0 allows remote malicious users to execute arbitrary code via a long filename parameter to the RunEgatherer method.
Ibm Egatherer 2.0.16
Ibm Egatherer 2.42.243
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started