Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
lenovo vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2021-3849
An authentication bypass vulnerability exists in the web interface of the Lenovo Fan Power Controller2 (FPC2) and Lenovo System Management Module (SMM) firmware that could allow an unauthenticated malicious user to execute commands on the SMM and FPC2. SMM2 is not affected.
Lenovo Nextscale N1200 Enclosure Firmware
Lenovo Thinkagile Hx Enclosure Certified Node Firmware
Lenovo Thinkagile Vx Enclosure Firmware
Lenovo Thinksystem D2 Enclosure Firmware
Ibm Nextscale Fan Power Controller Firmware
9.8
CVSSv3
CVE-2021-3897
An authentication bypass vulnerability exists in an internal service of the Lenovo Fan Power Controller2 (FPC2) and Lenovo System Management Module (SMM) firmware during an that could allow an unauthenticated malicious user to execute commands on the SMM and FPC2. SMM2 is not aff...
Lenovo Nextscale N1200 Enclosure Firmware
Lenovo Thinkagile Hx Enclosure Certified Node Firmware
Lenovo Thinkagile Vx Enclosure Firmware
Lenovo Thinksystem D2 Enclosure Firmware
Ibm Nextscale Fan Power Controller Firmware
9.8
CVSSv3
CVE-2021-3616
A vulnerability was reported in Lenovo Smart Camera X3, X5, and C2E that could allow an unauthorized user to view device information, alter firmware content and device configuration. This vulnerability is the same as CNVD-2020-68651.
Lenovo Smart Camera C2e Firmware
Lenovo Smart Camera X3 Firmware
Lenovo Smart Camera X5 Firmware
9.8
CVSSv3
CVE-2020-8349
An internal security review has identified an unauthenticated remote code execution vulnerability in Cloud Networking Operating System (CNOS)’ optional REST API management interface. This interface is disabled by default and not vulnerable unless enabled. When enabled, it i...
Lenovo Cloud Networking Operating System
9.8
CVSSv3
CVE-2015-5684
MITRE is populating this ID because it was assigned prior to Lenovo becoming a CNA. A buffer overflow vulnerability was reported, (fixed and publicly disclosed in 2015) in the Lenovo Service Engine (LSE), affecting various versions of BIOS for Lenovo Notebooks, that could allow a...
Lenovo B50-10 Firmware
Lenovo Flex 2 Pro-15 Firmware
Lenovo Edge 15 Firmware
Lenovo Flex 3-1470 Firmware
Lenovo Flex 3-1570 Firmware
Lenovo Flex 3-1120 Firmware
Lenovo G40-80 Firmware
Lenovo G50-80 Firmware
Lenovo G50-80 Touch Firmware
Lenovo G50-80 Touch V3000 Firmware
Lenovo G40-80m Firmware
Lenovo G50-80m Firmware
Lenovo Ideapad 100-14iby Firmware
Lenovo Ideapad 100-15iby Firmware
Lenovo S21e Firmware
Lenovo S41-70 Firmware
Lenovo U41-70 Firmware
Lenovo S435 Firmware
Lenovo M40-35 Firmware
Lenovo U31-70 Firmware
Lenovo Yoga 3 14 Firmware
Lenovo Yoga 3 11 Firmware
9.8
CVSSv3
CVE-2019-11994
A security vulnerability has been identified in HPE SimpliVity 380 Gen 9, HPE SimpliVity 380 Gen 10, HPE SimpliVity 380 Gen 10 G, HPE SimpliVity 2600 Gen 10, SimpliVity OmniCube, SimpliVity OmniStack for Cisco, SimpliVity OmniStack for Lenovo and SimpliVity OmniStack for Dell nod...
Hp Simplivity 380 Gen9 Firmware
Hp Simplivity 380 Gen10 G Firmware
Hp Simplivity 380 Gen10 Firmware
Hp Simplivity 2600 Gen10 Firmware
Hp Simplivity Omnicube Firmware
Hp Simplivity Omnistack For Dell Firmware
Hp Simplivity Omnistack For Cisco Firmware
Hp Simplivity Omnistack For Lenovo Firmware
9.8
CVSSv3
CVE-2019-6188
The BIOS tamper detection mechanism was not triggered in Lenovo ThinkPad T460p, BIOS versions up to R07ET90W, and T470p, BIOS versions up to R0FET50W, which may allow for unauthorized access.
Lenovo 510-15ikl Firmware -
Lenovo 510s-08ikl Firmware -
Lenovo Ideacentre 300-20ish Firmware -
Lenovo Ideacentre 300s-11ish Firmware -
Lenovo Ideacentre 310s-08asr Firmware -
Lenovo Ideacentre 310s-08igm Firmware -
Lenovo Ideacentre 510-15icb Firmware -
Lenovo Ideacentre 510a-15icb Firmware -
Lenovo Ideacentre 510s-08ish Firmware -
Lenovo Ideacentre 700 Firmware -
Lenovo Ideacentre 720-18apr Firmware -
Lenovo Ideacentre 720-18icb Firmware -
Lenovo Legion C530-19icb Firmware -
Lenovo Legion C730-19ico Firmware -
Lenovo Legion T530-28apr Firmware -
Lenovo Legion T530-28apr Reflash Firmware -
Lenovo Legion T530-28icb Firmware -
Lenovo Legion T530-28icb Reflash Firmware -
Lenovo Legion T730-28ico Firmware -
Lenovo Legion Y520t Z370 Firmware -
Lenovo 63 Firmware -
Lenovo H50-30g Desktop Firmware -
9.8
CVSSv3
CVE-2019-6177
A vulnerability reported in Lenovo Solution Center version 03.12.003, which is no longer supported, could allow log files to be written to non-standard locations, potentially leading to privilege escalation. Lenovo ended support for Lenovo Solution Center and recommended that cus...
Lenovo Solution Center 03.12.003
1 Article
9.8
CVSSv3
CVE-2019-6168
A vulnerability reported in Lenovo Service Bridge before version 4.1.0.1 could allow remote code execution.
Lenovo Service Bridge
9.8
CVSSv3
CVE-2019-6167
A vulnerability reported in Lenovo Service Bridge before version 4.1.0.1 could allow remote code execution.
Lenovo Service Bridge
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »