Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
lenovo thinkpad x13 gen 3 firmware vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv3
CVE-2022-48182
A vulnerability was reported in ThinkPad T14s Gen 3 and X13 Gen3 that could cause the BIOS tamper detection mechanism to not trigger under specific circumstances which could allow unauthorized access.
Lenovo Thinkpad T14s Gen 3 Firmware
Lenovo Thinkpad X13 Gen 3 Firmware
6.8
CVSSv3
CVE-2022-48183
A vulnerability was reported in ThinkPad T14s Gen 3 and X13 Gen3 that could cause the BIOS tamper detection mechanism to not trigger under specific circumstances which could allow unauthorized access.
Lenovo Thinkpad T14s Gen 3 Firmware
Lenovo Thinkpad X13 Gen 3 Firmware
6.8
CVSSv3
CVE-2022-3728
A vulnerability was reported in ThinkPad T14s Gen 3 and X13 Gen3 that could cause the BIOS tamper detection mechanism to not trigger under specific circumstances which could allow unauthorized access.
Lenovo Thinkpad T14s Gen 3 Firmware
Lenovo Thinkpad X13 Gen 3 Firmware
6.7
CVSSv3
CVE-2022-4574
An SMI handler input validation vulnerability in the BIOS of some ThinkPad models could allow an attacker with local access and elevated privileges to execute arbitrary code.
Lenovo Thinkpad X13 Yoga Gen 2 Firmware
Lenovo Thinkpad X13 Yoga Gen 1 Firmware
Lenovo Thinkpad X13 Gen 3 Firmware
Lenovo Thinkpad X13 Gen 2 Firmware
Lenovo Thinkpad X13 Firmware
Lenovo Thinkpad X1 Yoga 7th Gen Firmware
Lenovo Thinkpad X1 Yoga 6th Gen Firmware
Lenovo Thinkpad X1 Yoga 5th Gen Firmware
Lenovo Thinkpad X1 Yoga 4th Gen Firmware
Lenovo Thinkpad X1 Titanium Firmware
Lenovo Thinkpad X1 Nano Gen 2 Firmware
Lenovo Thinkpad X1 Nano Gen 1 Firmware
Lenovo Thinkpad X1 Fold Gen 1 Firmware -
Lenovo Thinkpad X1 Extreme Gen 5 Firmware
Lenovo Thinkpad X1 Extreme 4th Gen Firmware
Lenovo Thinkpad X1 Extreme 3rd Gen Firmware
Lenovo Thinkpad X1 Carbon 9th Gen Firmware
Lenovo Thinkpad X1 Carbon 8th Gen Firmware
Lenovo Thinkpad X1 Carbon 7th Gen Firmware
Lenovo Thinkpad X1 Carbon 10th Gen Firmware
Lenovo Thinkpad T16 Gen 1 Firmware
Lenovo Thinkpad T15p Gen 3 Firmware
6.7
CVSSv3
CVE-2023-5078
A vulnerability was reported in some ThinkPad BIOS that could allow a physical or local attacker with elevated privileges to tamper with BIOS firmware.
Lenovo Thinkpad X13 Gen 3 Firmware -
Lenovo Thinkpad S2 Yoga Gen 7 Firmware
Lenovo Thinkpad S2 Yoga Gen 6 Firmware -
Lenovo Thinkpad S2 Gen 8 Firmware -
Lenovo Thinkpad P14s Gen 3 Firmware -
Lenovo Thinkpad P16s Gen 1 Firmware -
Lenovo Thinkpad T14 Gen 3 Firmware -
Lenovo Thinkpad T14s Gen 3 Firmware -
Lenovo Thinkpad T16 Gen 1 Firmware -
Lenovo Thinkpad L14 Gen 3 Firmware
Lenovo Thinkpad L14 Gen 4 Firmware
Lenovo Thinkpad L15 Gen 3 Firmware
Lenovo Thinkpad L15 Gen 4 Firmware
Lenovo Thinkpad L13 Yoga Gen 4 Firmware -
Lenovo Thinkpad L13 Yoga Gen 3 Firmware
Lenovo Thinkpad L13 Yoga Gen 2 Firmware -
Lenovo Thinkpad L13 Gen 4 Firmware -
Lenovo Thinkpad L13 Gen 3 Firmware
Lenovo Thinkpad L13 Gen 2 Firmware -
Lenovo Thinkpad S2 Yoga Gen 8 Firmware -
6.7
CVSSv3
CVE-2022-48189
An SMM driver input validation vulnerability in the BIOS of some ThinkPad models could allow an attacker with local access and elevated privileges to execute arbitrary code.
Lenovo Thinkpad E14 Firmware
Lenovo Thinkpad E14 Gen 2 Firmware
Lenovo Thinkpad E14 Gen 4 Firmware
Lenovo Thinkpad E15 Firmware
Lenovo Thinkpad E15 Gen 2 Firmware
Lenovo Thinkpad E15 Gen 4 Firmware
Lenovo Thinkpad E490 Firmware
Lenovo Thinkpad E490s Firmware
Lenovo Thinkpad E590 Firmware
Lenovo Thinkpad L13 Gen 3 Firmware
Lenovo Thinkpad L13 Yoga Gen 3 Firmware
Lenovo Thinkpad L14 Firmware
Lenovo Thinkpad L14 Firmware -
Lenovo Thinkpad L15 Firmware
Lenovo Thinkpad L15 Gen 2 Firmware -
Lenovo Thinkpad L15 Gen 3 Firmware
Lenovo Thinkpad L490 Firmware
Lenovo Thinkpad L590 Firmware
Lenovo Thinkpad P1 Gen 2 Firmware
Lenovo Thinkpad P1 Gen 3 Firmware
Lenovo Thinkpad P1 Gen 4 Firmware
Lenovo Thinkpad P1 Gen 5 Firmware
6.7
CVSSv3
CVE-2023-4029
A buffer overflow has been identified in the BoardUpdateAcpiDxe driver in some Lenovo ThinkPad products which may allow an attacker with local access and elevated privileges to execute arbitrary code.
Lenovo K14 Type 21cu Firmware
Lenovo K14 Type 21cv Firmware
Lenovo Thinkpad S2 Yoga Gen 8 Firmware
Lenovo Thinkpad E14 Gen 3 Firmware
Lenovo Thinkpad E15 Gen 3 Firmware
Lenovo Thinkpad L13 Gen 2 Firmware
Lenovo Thinkpad L13 Gen 3 Firmware
Lenovo Thinkpad L13 Gen 4 Firmware
Lenovo Thinkpad L13 Yoga Gen 4 Firmware
Lenovo Thinkpad L13 Yoga Gen 2 Firmware
Lenovo Thinkpad L13 Yoga Gen 3 Firmware
Lenovo Thinkpad L14 Gen 2 Firmware
Lenovo Thinkpad L14 Gen 3 Firmware
Lenovo Thinkpad L14 Gen 4 Firmware
Lenovo Thinkpad L15 Gen 2 Firmware
Lenovo Thinkpad L15 Gen 3 Firmware
Lenovo Thinkpad L15 Gen 4 Firmware
Lenovo Thinkpad P14s Gen 2 Firmware
Lenovo Thinkpad T14 Gen 2 Firmware
Lenovo Thinkpad T14s Gen 2 Firmware
Lenovo Thinkpad S2 Gen 6 Firmware
Lenovo Thinkpad S2 Gen 7 Firmware
6.7
CVSSv3
CVE-2023-2290
A potential vulnerability in the LenovoFlashDeviceInterface SMI handler may allow an attacker with local access and elevated privileges to execute arbitrary code.
Lenovo Thinkpad E14 Firmware 1.23
Lenovo Thinkpad E14 Gen 2 Firmware 1.55
Lenovo Thinkpad E14 Gen 4 Firmware 1.18
Lenovo Thinkpad E14 Gen 4 Firmware 1.16
Lenovo Thinkpad E15 Firmware 1.23
Lenovo Thinkpad E15 Gen 2 Firmware 1.55
Lenovo Thinkpad E15 Gen 4 Firmware 1.18
Lenovo Thinkpad E15 Gen 4 Firmware 1.16
Lenovo Thinkpad E490 Firmware 1.34
Lenovo Thinkpad E490s Firmware 1.34
Lenovo Thinkpad E590 Firmware 1.34
Lenovo Thinkpad L13 Gen 3 Firmware 1.14
Lenovo Thinkpad L13 Yoga Gen 3 Firmware 1.14
Lenovo Thinkpad L14 Firmware 1.2
Lenovo Thinkpad L14 Firmware 1.3
Lenovo Thinkpad L14 Firmware 1.48
Lenovo Thinkpad L14 Firmware 1.61
Lenovo Thinkpad L14 Firmware 1.26
Lenovo Thinkpad L15 Firmware 1.2
Lenovo Thinkpad L15 Firmware 1.3
Lenovo Thinkpad L15 Gen 2 Firmware 1.48
Lenovo Thinkpad L15 Gen 2 Firmware 1.61
6.7
CVSSv3
CVE-2021-3599
A potential vulnerability in the SMI callback function used to access flash device in some ThinkPad models may allow an attacker with local access and elevated privileges to execute arbitrary code.
Lenovo Thinkpad X380 Yoga Firmware
Lenovo Thinkpad X1 Fold Gen 1 Firmware
Lenovo Thinkpad Yoga 260 Firmware
Lenovo Thinkpad Yoga 11e 3rd Gen Firmware
Lenovo Thinkpad Yoga 15 Firmware
Lenovo Thinkpad Yoga 370 Firmware
Lenovo Thinkpad X12 Detachable Gen 1 Firmware
Lenovo Thinkpad X390 Firmware
Lenovo Thinkpad Yoga 11e 4th Gen Firmware
Lenovo Thinkpad Yoga 11e 5th Gen Firmware
Lenovo Thinkpad X250 Firmware
Lenovo Thinkpad X260 Firmware
Lenovo Thinkpad X390 Yoga Firmware
Lenovo Thinkpad X280 Firmware
Lenovo Thinkpad X1 Titanium Firmware
Lenovo Thinkpad X270 Firmware
Lenovo Thinkpad X1 Carbon 5th Gen Kabylake Firmware
Lenovo Thinkpad X13 Gen 1 Firmware
Lenovo Thinkpad X13 Gen 2 Firmware
Lenovo Thinkpad X13 Yoga Gen 1 Firmware
Lenovo Thinkpad X13 Yoga Gen 2 Firmware
Lenovo Thinkpad X1 Carbon 5th Gen Skylake Firmware
5.5
CVSSv3
CVE-2021-3786
A potential vulnerability in the SMI callback function used in CSME configuration of some Lenovo Notebook and ThinkPad systems could be used to leak out data out of the SMRAM range.
Lenovo Thinkpad X380 Yoga Firmware
Lenovo Thinkpad X1 Fold Gen 1 Firmware
Lenovo Thinkpad Yoga 260 Firmware
Lenovo Thinkpad Yoga 11e 3rd Gen Firmware
Lenovo Thinkpad Yoga 15 Firmware
Lenovo Thinkpad Yoga 370 Firmware
Lenovo Thinkpad X12 Detachable Gen 1 Firmware
Lenovo Thinkpad X390 Firmware
Lenovo Thinkpad Yoga 11e 4th Gen Firmware
Lenovo Thinkpad Yoga 11e 5th Gen Firmware
Lenovo Thinkpad X250 Firmware
Lenovo Thinkpad X260 Firmware
Lenovo Thinkpad X390 Yoga Firmware
Lenovo Thinkpad X280 Firmware
Lenovo Thinkpad X1 Titanium Firmware
Lenovo Thinkpad X270 Firmware
Lenovo Thinkpad X1 Carbon 5th Gen Kabylake Firmware
Lenovo Thinkpad X13 Gen 1 Firmware
Lenovo Thinkpad X13 Gen 2 Firmware
Lenovo Thinkpad X13 Yoga Gen 1 Firmware
Lenovo Thinkpad X13 Yoga Gen 2 Firmware
Lenovo Thinkpad X1 Carbon 5th Gen Skylake Firmware
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23692
CVE-2012-1823
memory leak
CVE-2024-0627
CVE-2024-31402
privilege escalation
CVE-2024-36418
remote code execution
CVE-2024-27844
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »