Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
lenovo access support vulnerabilities and exploits
(subscribe to this query)
5.8
CVSSv2
CVE-2007-2928
Format string vulnerability in the IBM Lenovo Access Support acpRunner ActiveX control, as distributed in acpcontroller.dll prior to 1.2.8.0 and possibly acpir.dll prior to 1.0.0.9 (Automated Solutions 1.0 before fix pack 1), allows remote malicious users to execute arbitrary cod...
Lenovo Access Support
Lenovo Automated Solutions 1.0
5.8
CVSSv2
CVE-2007-2929
The IBM Lenovo Access Support acpRunner ActiveX control, as distributed in acpcontroller.dll prior to 1.2.8.0 and possibly acpir.dll prior to 1.0.0.9 (Automated Solutions 1.0 before fix pack 1), exposes unsafe methods to arbitrary web domains, which allows remote malicious users ...
Lenovo Access Support
Lenovo Automated Solutions 1.0
5.8
CVSSv2
CVE-2007-2240
The IBM Lenovo Access Support acpRunner ActiveX control, as distributed in acpcontroller.dll prior to 1.2.8.0 and possibly acpir.dll prior to 1.0.0.9 (Automated Solutions 1.0 before fix pack 1), does not properly validate digital signatures of downloaded software, which makes it ...
Lenovo Access Support
Lenovo Automated Solutions 1.0
9.3
CVSSv2
CVE-2009-0215
Stack-based buffer overflow in the GetXMLValue method in the IBM Access Support ActiveX control in IbmEgath.dll, as distributed on IBM and Lenovo computers, allows remote malicious users to execute arbitrary code via unspecified vectors.
Ibm Access Support Activex Control 3.20.284.0
1 EDB exploit
3.6
CVSSv2
CVE-2019-18618
Incorrect access control in the firmware of Synaptics VFS75xx family fingerprint sensors that include external flash (all versions before 2019-11-15) allows a local administrator or physical malicious user to compromise the confidentiality of sensor data via injection of an unver...
Synaptics Vfs75xx Firmware 5.1.5.51
Synaptics Vfs75xx Firmware 5.1.337.26
Synaptics Vfs75xx Firmware 5.1.3507.26
Synaptics Vfs75xx Firmware 5.2.320.26
Synaptics Vfs75xx Firmware 5.2.524.26
Synaptics Vfs75xx Firmware 5.2.3109.26
Synaptics Vfs75xx Firmware 5.2.3530.26
Synaptics Vfs75xx Firmware 5.2.5024.26
Synaptics Vfs75xx Firmware 5.3.3541.26
Synaptics Vfs75xx Firmware 5.5.4.1116
Synaptics Vfs75xx Firmware 5.5.8.1092
Synaptics Vfs75xx Firmware 5.5.10.1100
Synaptics Vfs75xx Firmware 5.5.10.1106
Synaptics Vfs75xx Firmware 5.5.17.1099
Synaptics Vfs75xx Firmware 5.5.17.1102
Synaptics Vfs75xx Firmware 5.5.35.1058
Synaptics Vfs75xx Firmware 5.5.502.79
Synaptics Vfs75xx Firmware 5.5.512.1051
Synaptics Vfs75xx Firmware 5.5.2734.1050
Synaptics Vfs75xx Firmware 5.5.2810.1050
Lenovo Thinkpad 25 Firmware
Lenovo Thankpad A475 Firmware
4.4
CVSSv2
CVE-2019-0164
Improper permissions in the installer for Intel(R) Turbo Boost Max Technology 3.0 driver version 1.0.0.1035 and before may allow an authenticated user to potentially enable escalation of privilege via local access.
Intel Turbo Boost Max Technology 3.0
Lenovo Thinkstation P410 Firmware -
Lenovo Thinkstation P510 Firmware -
Lenovo Thinkstation P710 Firmware -
Lenovo Thinkstation P910 Firmware -
4.3
CVSSv2
CVE-2019-0130
Reflected XSS in web interface for Intel(R) Accelerated Storage Manager in Intel(R) RSTe before version 5.5.0.2015 may allow an unauthenticated user to potentially enable denial of service via network access.
Intel Rapid Storage Technology Enterprise
Lenovo Thinkstation P520 Firmware -
Lenovo Thinkstation P520c Firmware -
Lenovo Thinkstation P720 Firmware -
Lenovo Thinkstation P920 Firmware -
4.3
CVSSv2
CVE-2021-3956
A read-only authentication bypass vulnerability was reported in the Third Quarter 2021 release of Lenovo XClarity Controller (XCC) firmware affecting XCC devices configured in LDAP Authentication Only Mode and using an LDAP server that supports “unauthenticated bind”,...
Lenovo Xclarity Controller
9.3
CVSSv2
CVE-2006-4221
Stack-based buffer overflow in the IBM Access Support eGatherer ActiveX control prior to 3.20.0284.0 allows remote malicious users to execute arbitrary code via a long filename parameter to the RunEgatherer method.
Ibm Egatherer 2.0.16
Ibm Egatherer 2.42.243
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started