Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
lenovo thinkpad a475 firmware vulnerabilities and exploits
(subscribe to this query)
4.6
CVSSv2
CVE-2020-8334
The BIOS tamper detection mechanism was not triggered in Lenovo ThinkPad T495s, X395, T495, A485, A285, A475, A275 which may allow for unauthorized access.
Lenovo Thinkpad T495s Firmware -
Lenovo Thinkpad X395 Firmware -
Lenovo Thinkpad T495 Firmware -
Lenovo Thinkpad A485 Firmware -
Lenovo Thinkpad A285 Firmware -
Lenovo Thinkpad A475 Firmware -
Lenovo Thinkpad A275 Firmware -
4.6
CVSSv2
CVE-2020-8335
The BIOS tamper detection mechanism was not triggered in Lenovo ThinkPad A285, BIOS versions up to r0xuj70w; A485, BIOS versions up to r0wuj65w; T495 BIOS versions up to r12uj55w; T495s/X395, BIOS versions up to r13uj47w, while the emergency-reset button is pressed which may allo...
Lenovo Thinkpad A275 Firmware
Lenovo Thinkpad A285 Firmware
Lenovo Thinkpad A475 Firmware
Lenovo Thinkpad A485 Firmware
Lenovo Thinkpad T495 Drift Firmware
Lenovo Thinkpad T495s Jazz Firmware
Lenovo Thinkpad X1 Carbon (20bx) Firmware
Lenovo Thinkpad X395 Firmware
4.6
CVSSv2
CVE-2020-8320
An internal shell was included in BIOS image in some ThinkPad models that could allow escalation of privilege.
Lenovo Thinkpad 11e Yoga Gen 6 Firmware
Lenovo Thinkpad 11e Firmware
Lenovo Thinkpad Yoga 11e 3rd Gen Firmware
Lenovo Thinkpad Yoga 11e 4th Gen Firmware
Lenovo Thinkpad Yoga 11e 5th Gen Firmware
Lenovo Thinkpad 13 2nd Gen Firmware
Lenovo Thinkpad 13 Firmware
Lenovo Thinkpad A275 Firmware
Lenovo Thinkpad A285 Firmware
Lenovo Thinkpad A475 Firmware
Lenovo Thinkpad A485 Firmware
Lenovo Thinkpad E14 Firmware
Lenovo Thinkpad E15 Firmware
Lenovo Thinkpad R14 Firmware
Lenovo Thinkpad S3 Gen 2 Firmware
Lenovo Thinkpad E455 Firmware
Lenovo Thinkpad E555 Firmware
Lenovo Thinkpad E460 Firmware
Lenovo Thinkpad E560 Firmware
Lenovo Thinkpad E465 Firmware
Lenovo Thinkpad E565 Firmware
Lenovo Thinkpad E470 Firmware
6.8
CVSSv2
CVE-2019-10724
There is a vulnerability with the Dolby DAX2 API system services in which a low-privileged user can terminate arbitrary processes that are running at a higher privilege. The following are affected products and versions: Legion Y520T_Z370 6.0.1.8642, AIO310-20IAP 6.0.1.8642, AIO51...
Lenovo Legion Y520t Z370 Firmware
Lenovo Aio310-20iap Firmware
Lenovo Aio510-22ish Firmware
Lenovo Aio510-23ish Firmware
Lenovo Aio520-22ikl Firmware
Lenovo Aio520-22iku Firmware
Lenovo Aio520-24ikl Firmware
Lenovo Aio520-24iku Firmware
Lenovo Aio520-27ikl Firmware
Lenovo Aio720-24ikb Firmware
Lenovo Ideacentre 520s-23iku Firmware
Lenovo Thinkcentre M700z Firmware
Lenovo Thinkcentre M800z Firmware
Lenovo Thinkcentre M810z Firmware
Lenovo Thinkcentre M818z Firmware
Lenovo Thinkcentre M900z Firmware
Lenovo Thinkcentre M910z Firmware
Lenovo V410z(yt S4250) Firmware
Lenovo 100e 2nd Gen Firmware -
Lenovo 300e 2nd Gen Firmware -
Lenovo 330-14ikbr Firmware
Lenovo 330-15ikbr Firmware
4.6
CVSSv2
CVE-2020-8323
A potential vulnerability in the SMI callback function used in the Legacy SD driver in some Lenovo ThinkPad, ThinkStation, and Lenovo Notebook models may allow arbitrary code execution.
Lenovo 330-14ast Firmware -
Lenovo 330-15ast Firmware -
Lenovo 330-17ast Firmware -
Lenovo 340c-15api Firmware -
Lenovo 340c-15ast Firmware -
Lenovo 720s Touch-15ikb Firmware -
Lenovo 720s-15ikb Firmware -
Lenovo 730s-13iwl Firmware -
Lenovo C640-iml Firmware -
Lenovo E42-80 Firmware -
Lenovo E52-80 Firmware -
Lenovo K22-80 Firmware -
Lenovo V720-12 Firmware -
Lenovo K32-80 Kbl Firmware -
Lenovo K32-80 Skl Firmware -
Lenovo Miix 720-12ikb Firmware -
Lenovo S145-14api Firmware -
Lenovo S145-14ast Firmware -
Lenovo S145-15api Firmware -
Lenovo S145-15ast Firmware -
Lenovo S540-13api Firmware -
Lenovo S750-iil Firmware -
NA
CVE-2019-19705
Realtek Audio Drivers for Windows, as used on the Lenovo ThinkPad X1 Carbon 20A7, 20A8, 20BS, and 20BT prior to 6.0.8882.1 and 20KH and 20KG prior to 6.0.8907.1 (and on many other Lenovo and non-Lenovo products), mishandles DLL preloading.
Lenovo Ideacentre 510-15ikl Firmware
Lenovo Ideacentre 510s-08ikl Firmware
Lenovo Ideacentre 300s-11ish Firmware
Lenovo Ideacentre 310-15asr Firmware
Lenovo Ideacentre 310-15iap Firmware
Lenovo Ideacentre 310a-15iap Firmware
Lenovo Ideacentre 310s-08iap Firmware
Lenovo Ideacentre 510-15abr Firmware
Lenovo Ideacentre 510s-08ish Firmware
Lenovo Ideacentre 610s-02ish Firmware
Lenovo Ideacentre 620s-03ikl Firmware
Lenovo Ideacentre 700 Firmware
Lenovo Ideacentre 720-18asr Firmware
Lenovo Legion Y520t Z370 Firmware
Lenovo Legion Y720 Tower Firmware
Lenovo Legion Y720t Amd Firmware
Lenovo Legion Y920 Tower Firmware
Lenovo Lenovo V320-15iap Firmware
Lenovo Thinkcentre E74s Firmware
Lenovo Yangtian Mc H110 Firmware
Lenovo Yangtian Me/we H110 Firmware
Lenovo Yangtian Tc/wc H110 Pci Firmware
4.6
CVSSv2
CVE-2019-18619
Incorrect parameter validation in the synaTee component of Synaptics WBF drivers using an SGX enclave (all versions before 2019-11-15) allows a local user to execute arbitrary code in the enclave (that can compromise confidentiality of enclave data) via APIs that accept invalid p...
Synaptics Vfs75xx Firmware 5.2.225.26
Synaptics Vfs75xx Firmware 5.2.318.26
Synaptics Vfs75xx Firmware 5.2.524.26
Synaptics Vfs75xx Firmware 5.2.3530.26
Synaptics Vfs75xx Firmware 5.3.3539.26
Synaptics Vfs75xx Firmware 5.5.3.1116
Synaptics Vfs75xx Firmware 5.5.8.1096
Synaptics Vfs75xx Firmware 5.5.10.1093
Synaptics Vfs75xx Firmware 5.5.11.1106
Synaptics Vfs75xx Firmware 5.5.15.1102
Synaptics Vfs75xx Firmware 5.5.38.1058
Synaptics Vfs75xx Firmware 5.5.2734.1050
Synaptics Vfs75xx Firmware 5.5.2811.1050
Synaptics Vfs75xx Firmware 5.6.23.1000
Synaptics Vfs75xx Firmware 6.0.14.1108
Synaptics Vfs75xx Firmware 6.0.32.1104
Synaptics Vfs75xx Firmware 6.0.42.1107
Lenovo Thinkpad 25 Firmware
Lenovo Thankpad A475 Firmware
Lenovo Thankpad A485 Firmware
Lenovo Thinkpad E480 Firmware
Lenovo Thinkpad E580 Firmware
1 Github repository
3.6
CVSSv2
CVE-2019-18618
Incorrect access control in the firmware of Synaptics VFS75xx family fingerprint sensors that include external flash (all versions before 2019-11-15) allows a local administrator or physical malicious user to compromise the confidentiality of sensor data via injection of an unver...
Synaptics Vfs75xx Firmware 5.1.5.51
Synaptics Vfs75xx Firmware 5.1.337.26
Synaptics Vfs75xx Firmware 5.1.3507.26
Synaptics Vfs75xx Firmware 5.2.320.26
Synaptics Vfs75xx Firmware 5.2.524.26
Synaptics Vfs75xx Firmware 5.2.3109.26
Synaptics Vfs75xx Firmware 5.2.3530.26
Synaptics Vfs75xx Firmware 5.2.5024.26
Synaptics Vfs75xx Firmware 5.3.3541.26
Synaptics Vfs75xx Firmware 5.5.4.1116
Synaptics Vfs75xx Firmware 5.5.8.1092
Synaptics Vfs75xx Firmware 5.5.10.1100
Synaptics Vfs75xx Firmware 5.5.10.1106
Synaptics Vfs75xx Firmware 5.5.17.1099
Synaptics Vfs75xx Firmware 5.5.17.1102
Synaptics Vfs75xx Firmware 5.5.35.1058
Synaptics Vfs75xx Firmware 5.5.502.79
Synaptics Vfs75xx Firmware 5.5.512.1051
Synaptics Vfs75xx Firmware 5.5.2734.1050
Synaptics Vfs75xx Firmware 5.5.2810.1050
Lenovo Thinkpad 25 Firmware
Lenovo Thankpad A475 Firmware
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSRF
server-side request forgery
CVE-2024-30067
CVE-2024-5553
CVE-2024-30095
IDOR
CVE-2024-35252
CVE-2024-23692
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started