Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
lenovo access support vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-2928
Format string vulnerability in the IBM Lenovo Access Support acpRunner ActiveX control, as distributed in acpcontroller.dll prior to 1.2.8.0 and possibly acpir.dll prior to 1.0.0.9 (Automated Solutions 1.0 before fix pack 1), allows remote malicious users to execute arbitrary cod...
Lenovo Automated Solutions 1.0
Lenovo Access Support
NA
CVE-2007-2929
The IBM Lenovo Access Support acpRunner ActiveX control, as distributed in acpcontroller.dll prior to 1.2.8.0 and possibly acpir.dll prior to 1.0.0.9 (Automated Solutions 1.0 before fix pack 1), exposes unsafe methods to arbitrary web domains, which allows remote malicious users ...
Lenovo Automated Solutions 1.0
Lenovo Access Support
NA
CVE-2007-2240
The IBM Lenovo Access Support acpRunner ActiveX control, as distributed in acpcontroller.dll prior to 1.2.8.0 and possibly acpir.dll prior to 1.0.0.9 (Automated Solutions 1.0 before fix pack 1), does not properly validate digital signatures of downloaded software, which makes it ...
Lenovo Automated Solutions 1.0
Lenovo Access Support
NA
CVE-2009-0215
Stack-based buffer overflow in the GetXMLValue method in the IBM Access Support ActiveX control in IbmEgath.dll, as distributed on IBM and Lenovo computers, allows remote malicious users to execute arbitrary code via unspecified vectors.
Ibm Access Support Activex Control 3.20.284.0
1 EDB exploit
7.3
CVSSv3
CVE-2019-0164
Improper permissions in the installer for Intel(R) Turbo Boost Max Technology 3.0 driver version 1.0.0.1035 and before may allow an authenticated user to potentially enable escalation of privilege via local access.
Intel Turbo Boost Max Technology 3.0
Lenovo Thinkstation P410 Firmware -
Lenovo Thinkstation P510 Firmware -
Lenovo Thinkstation P710 Firmware -
Lenovo Thinkstation P910 Firmware -
7.4
CVSSv3
CVE-2019-0130
Reflected XSS in web interface for Intel(R) Accelerated Storage Manager in Intel(R) RSTe before version 5.5.0.2015 may allow an unauthenticated user to potentially enable denial of service via network access.
Intel Rapid Storage Technology Enterprise
Lenovo Thinkstation P520 Firmware -
Lenovo Thinkstation P520c Firmware -
Lenovo Thinkstation P720 Firmware -
Lenovo Thinkstation P920 Firmware -
6
CVSSv3
CVE-2019-18618
Incorrect access control in the firmware of Synaptics VFS75xx family fingerprint sensors that include external flash (all versions before 2019-11-15) allows a local administrator or physical malicious user to compromise the confidentiality of sensor data via injection of an unver...
Synaptics Vfs75xx Firmware 5.1.5.51
Synaptics Vfs75xx Firmware 5.1.337.26
Synaptics Vfs75xx Firmware 5.1.3507.26
Synaptics Vfs75xx Firmware 5.2.320.26
Synaptics Vfs75xx Firmware 5.2.524.26
Synaptics Vfs75xx Firmware 5.2.3109.26
Synaptics Vfs75xx Firmware 5.2.3530.26
Synaptics Vfs75xx Firmware 5.2.5024.26
Synaptics Vfs75xx Firmware 5.3.3541.26
Synaptics Vfs75xx Firmware 5.5.4.1116
Synaptics Vfs75xx Firmware 5.5.8.1092
Synaptics Vfs75xx Firmware 5.5.10.1100
Synaptics Vfs75xx Firmware 5.5.10.1106
Synaptics Vfs75xx Firmware 5.5.17.1099
Synaptics Vfs75xx Firmware 5.5.17.1102
Synaptics Vfs75xx Firmware 5.5.35.1058
Synaptics Vfs75xx Firmware 5.5.502.79
Synaptics Vfs75xx Firmware 5.5.512.1051
Synaptics Vfs75xx Firmware 5.5.2734.1050
Synaptics Vfs75xx Firmware 5.5.2810.1050
Lenovo Thinkpad 25 Firmware
Lenovo Thankpad A475 Firmware
5.3
CVSSv3
CVE-2021-3956
A read-only authentication bypass vulnerability was reported in the Third Quarter 2021 release of Lenovo XClarity Controller (XCC) firmware affecting XCC devices configured in LDAP Authentication Only Mode and using an LDAP server that supports “unauthenticated bind”,...
Lenovo Xclarity Controller
NA
CVE-2006-4221
Stack-based buffer overflow in the IBM Access Support eGatherer ActiveX control prior to 3.20.0284.0 allows remote malicious users to execute arbitrary code via a long filename parameter to the RunEgatherer method.
Ibm Egatherer 2.42.243
Ibm Egatherer 2.0.16
5.9
CVSSv3
CVE-2016-1344
The IKEv2 implementation in Cisco IOS 15.0 up to and including 15.6 and IOS XE 3.3 up to and including 3.17 allows remote malicious users to cause a denial of service (device reload) via fragmented packets, aka Bug ID CSCux38417.
Cisco Ios Xe 3.4sg 3.4.2sg
Cisco Ios Xe 3.4sg 3.4.6sg
Cisco Ios Xe 3.10s 3.10.3s
Cisco Ios Xe 3.7s 3.7.0s
Cisco Ios Xe 3.7s 3.7.5s
Cisco Ios Xe 3.5e 3.5.2e
Cisco Ios Xe 3.4s 3.4.6s
Cisco Ios Xe 3.9s 3.9.1s
Cisco Ios Xe 3.7e 3.7.3e
Cisco Ios Xe 3.3s 3.3.2s
Cisco Ios Xe 3.5e 3.5.1e
Cisco Ios Xe 3.16s 3.16.0s
Cisco Ios Xe 3.4sg 3.4.7sg
Cisco Ios Xe 3.12s 3.12.1s
Cisco Ios Xe 3.7s 3.7.7s
Cisco Ios Xe 3.8s 3.8.1s
Cisco Ios Xe 3.6s 3.6.1s
Cisco Ios Xe 3.6e 3.6.2e
Cisco Ios Xe 3.6e 3.6.1e
Cisco Ios Xe 3.7s 3.7.4s
Cisco Ios Xe 3.4s 3.4.0as
Samsung X14j Firmware T-ms14jakucb-1102.5
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started