LenovoCVEs & Vulnerabilities

397 CVEs affecting Lenovo products, tracked from the National Vulnerability Database, with CVSS/EPSS scores and exploitation status.

Most Affected Products

active protection system 49thinkstation p360 workstation firmware 40thinkcentre neo 30a 27 gen 4 firmware 30thinkcentre m75t gen 2 firmware 30thinkcentre m625q 28thinkcentre m625q firmware 28ideacentre 5-14iob6 27ideacentre 5-14iob6 firmware 27
CVE-2023-5079HIGH

Lenovo LeCloud App improper input validation allows attackers to access arbitrary components and arbitrary file downloads, which could result in information disclosure.

9 Nov 2023
7.5
CVSS
CVE-2023-5078MEDIUM

A vulnerability was reported in some ThinkPad BIOS that could allow a physical or local attacker with elevated privileges to tamper with BIOS firmware.

9 Nov 2023
6.7
CVSS
CVE-2023-5075MEDIUM

A buffer overflow was reported in the FmpSipoCapsuleDriver driver in the IdeaPad Duet 3-10IGL5 that may allow a local attacker with elevated privileges to execute arbitrary code.

9 Nov 2023
6.7
CVSS
CVE-2023-4891MEDIUM

A potential use-after-free vulnerability was reported in the Lenovo View driver that could result in denial of service.

9 Nov 2023
5.5
CVSS
CVE-2023-4706HIGH

A privilege escalation vulnerability was reported in Lenovo preloaded devices deployed using Microsoft AutoPilot under a standard user account due to incorrect default privileges.

9 Nov 2023
7.8
CVSS
CVE-2023-4632HIGH

An uncontrolled search path vulnerability was reported in Lenovo System Update that could allow an attacker with local access to execute code with elevated privileges.

9 Nov 2023
7.8
CVSS
CVE-2023-43570MEDIUM

A potential vulnerability was reported in the SMI callback function of the OemSmi driver that may allow a local attacker with elevated permissions to execute arbitrary code.

9 Nov 2023
6.7
CVSS
CVE-2023-43569MEDIUM

A buffer overflow was reported in the OemSmi module in some Lenovo Desktop products that may allow a local attacker with elevated privileges to execute arbitrary code. 

9 Nov 2023
6.7
CVSS
CVE-2023-43568MEDIUM

A buffer over-read was reported in the LemSecureBootForceKey module in some Lenovo Desktop products that may allow a local attacker with elevated privileges to disclose sensitive information.

9 Nov 2023
4.4
CVSS
CVE-2023-43567MEDIUM

A buffer overflow was reported in the LemSecureBootForceKey module in some Lenovo Desktop products that may allow a local attacker with elevated privileges to execute arbitrary code.

9 Nov 2023
6.7
CVSS
CVE-2022-4575MEDIUM

A vulnerability due to improper write protection of UEFI variables was reported in the BIOS of some ThinkPad models could allow an attacker with physical or local access and elevated privileges the ability to bypass Secure Boot.

30 Oct 2023
6.7
CVSS
CVE-2022-4574MEDIUM

An SMI handler input validation vulnerability in the BIOS of some ThinkPad models could allow an attacker with local access and elevated privileges to execute arbitrary code.  

30 Oct 2023
6.7
CVSS
CVE-2022-4573MEDIUM

An SMI handler input validation vulnerability in the ThinkPad X1 Fold Gen 1 could allow an attacker with local access and elevated privileges to execute arbitrary code.

30 Oct 2023
6.7
CVSS
CVE-2022-48189MEDIUM

An SMM driver input validation vulnerability in the BIOS of some ThinkPad models could allow an attacker with local access and elevated privileges to execute arbitrary code.

30 Oct 2023
6.7
CVSS
CVE-2022-3702HIGH

A denial of service vulnerability was reported in Lenovo Vantage HardwareScan Plugin version 1.3.0.5 and earlier that could allow a local attacker to delete contents of an arbitrary directory under certain conditions.

27 Oct 2023
7.1
CVSS
CVE-2022-3701HIGH

A privilege elevation vulnerability was reported in the Lenovo Vantage SystemUpdate plugin version 2.0.0.212 and earlier that could allow a local attacker to execute arbitrary code with elevated privileges.

27 Oct 2023
7.8
CVSS
CVE-2022-3700MEDIUM

A Time of Check Time of Use (TOCTOU) vulnerability was reported in the Lenovo Vantage SystemUpdate Plugin version 2.0.0.212 and earlier that could allow a local attacker to delete arbitrary files.

27 Oct 2023
6.3
CVSS
CVE-2022-3611HIGH

An information disclosure vulnerability has been identified in the Lenovo App Store which may allow some applications to gain unauthorized access to sensitive user data used by other unrelated applications.

27 Oct 2023
7.5
CVSS
CVE-2022-3429MEDIUM

A denial-of-service vulnerability was found in the firmware used in Lenovo printers, where users send illegal or malformed strings to an open port, triggering a denial of service that causes a display error and prevents the printer from functioning properly.

27 Oct 2023
6.5
CVSS
CVE-2022-34887MEDIUM

Standard users can directly operate and set printer configuration information , such as IP, in some Lenovo Printers without having to authenticate with the administrator password.

27 Oct 2023
5.4
CVSS
CVE-2022-34886HIGH

A remote code execution vulnerability was found in the firmware used in some Lenovo printers, which can be caused by a remote user pushing an illegal string to the server-side interface via a script, resulting in a stack overflow.

27 Oct 2023
8.8
CVSS
CVE-2023-4608HIGH

An authenticated XCC user with elevated privileges can perform blind SQL injection in limited cases through a crafted API command.  This affects ThinkSystem v2 and v3 servers with XCC; ThinkSystem v1 servers are not affected.

25 Oct 2023
7.2
CVSS
CVE-2023-4607HIGH

An authenticated XCC user can change permissions for any user through a crafted API command.

25 Oct 2023
8.8
CVSS
CVE-2023-4606HIGH

An authenticated XCC user with Read-Only permission can change a different user’s password through a crafted API command.   This affects ThinkSystem v2 and v3 servers with XCC; ThinkSystem v1 servers are not affected.

25 Oct 2023
8.1
CVSS
CVE-2023-3112HIGH

A vulnerability was reported in Elliptic Labs Virtual Lock Sensor for ThinkPad T14 Gen 3 that could allow an attacker with local access to execute code with elevated privileges.

25 Oct 2023
7.8
CVSS
CVE-2022-3698MEDIUM

A denial of service vulnerability was reported in the Lenovo HardwareScanPlugin versions prior to 1.3.1.2 and  Lenovo Diagnostics versions prior to 4.45 that could allow a local user with administrative access to trigger a system crash.

25 Oct 2023
4.4
CVSS
CVE-2022-0353MEDIUM

A denial of service vulnerability was reported in the Lenovo HardwareScanPlugin versions prior to 1.3.1.2 and  Lenovo Diagnostics versions prior to 4.45 that could allow a local user with administrative access to trigger a system crash.

25 Oct 2023
4.4
CVSS
CVE-2022-48183MEDIUM

A vulnerability was reported in ThinkPad T14s Gen 3 and X13 Gen3 that could cause the BIOS tamper detection mechanism to not trigger under specific circumstances which could allow unauthorized access.

10 Oct 2023
6.8
CVSS
CVE-2022-48182MEDIUM

A vulnerability was reported in ThinkPad T14s Gen 3 and X13 Gen3 that could cause the BIOS tamper detection mechanism to not trigger under specific circumstances which could allow unauthorized access.

10 Oct 2023
6.8
CVSS
CVE-2022-3728MEDIUM

A vulnerability was reported in ThinkPad T14s Gen 3 and X13 Gen3 that could cause the BIOS tamper detection mechanism to not trigger under specific circumstances which could allow unauthorized access.

10 Oct 2023
6.8
CVSS
CVE-2022-3431HIGH

A potential vulnerability in a driver used during manufacturing process on some consumer Lenovo Notebook devices that was mistakenly not deactivated may allow an attacker with elevated privileges to modify secure boot setting by modifying an NVRAM variable.

9 Oct 2023
7.8
CVSS
CVE-2022-3746MEDIUM

A potential vulnerability was discovered in LCFC BIOS for some Lenovo consumer notebook models that could allow a local attacker with elevated privileges to cause some peripherals to work abnormally due to an exposed Embedded Controller (EC) interface.

23 Aug 2023
6.7
CVSS
CVE-2022-3745MEDIUM

A potential vulnerability was discovered in LCFC BIOS for some Lenovo consumer notebook models that could allow a local attacker with elevated privileges to view incoming and returned data from SMI.

23 Aug 2023
4.4
CVSS
CVE-2022-3744MEDIUM

A potential vulnerability was discovered in LCFC BIOS for some Lenovo consumer notebook models that could allow a local attacker with elevated privileges to unlock UEFI variables due to a hard-coded SMI handler credential.

23 Aug 2023
6.7
CVSS
CVE-2022-3743MEDIUM

A potential vulnerability was discovered in LCFC BIOS for some Lenovo consumer notebook models that could allow a local attacker with elevated privileges under certain conditions the ability to enumerate Embedded Controller (EC) commands.

23 Aug 2023
4.4
CVSS
CVE-2022-3742MEDIUM

A potential vulnerability was discovered in LCFC BIOS for some Lenovo consumer notebook models that could allow a local attacker with elevated privileges to execute arbitrary code due to improper buffer validation.

23 Aug 2023
6.7
CVSS
CVE-2023-4030HIGH

A vulnerability was reported in BIOS for ThinkPad P14s Gen 2, P15s Gen 2, T14 Gen 2, and T15 Gen 2 that could cause the system to recover to insecure settings if the BIOS becomes corrupt.

17 Aug 2023
7.8
CVSS
CVE-2023-4029MEDIUM

A buffer overflow has been identified in the BoardUpdateAcpiDxe driver in some Lenovo ThinkPad products which may allow an attacker with local access and elevated privileges to execute arbitrary code.

17 Aug 2023
6.7
CVSS
CVE-2023-4028MEDIUM

A buffer overflow has been identified in the SystemUserMasterHddPwdDxe driver in some Lenovo Notebook products which may allow an attacker with local access and elevated privileges to execute arbitrary code.

17 Aug 2023
6.7
CVSS
CVE-2023-3078HIGH

An uncontrolled search path vulnerability was reported in the Lenovo Universal Device Client (UDC) that could allow an attacker with local access to execute code with elevated privileges.

17 Aug 2023
7.8
CVSS
CVE-2023-34419MEDIUM

A buffer overflow has been identified in the SetupUtility driver in some Lenovo Notebook products which may allow an attacker with local access and elevated privileges to execute arbitrary code.

17 Aug 2023
6.7
CVSS
CVE-2023-3113HIGH

An unauthenticated XML external entity injection (XXE) vulnerability exists in LXCA's Common Information Model (CIM) server that could result in read-only access to specific files.

26 Jun 2023
7.5
CVSS
CVE-2023-34422MEDIUM

A valid, authenticated LXCA user with elevated privileges may be able to delete folders in the LXCA filesystem through a specifically crafted web API call due to insufficient input validation.

26 Jun 2023
6.5
CVSS
CVE-2023-34421MEDIUM

A valid, authenticated LXCA user with elevated privileges may be able to replace filesystem data through a specifically crafted web API call due to insufficient input validation.

26 Jun 2023
6.5
CVSS
CVE-2023-34420HIGH

A valid, authenticated LXCA user with elevated privileges may be able to execute command injections through crafted calls to a specific web API.

26 Jun 2023
7.2
CVSS
CVE-2023-34418HIGH

A valid, authenticated LXCA user may be able to gain unauthorized access to events and other data stored in LXCA due to a SQL injection vulnerability in a specific web API.

26 Jun 2023
8.1
CVSS
CVE-2023-2993MEDIUM

A valid, authenticated user with limited privileges may be able to use specifically crafted web management server API calls to execute a limited number of commands on SMM v1, SMM v2, and FPC that the user does not normally have sufficient privileges to execute.

26 Jun 2023
6.3
CVSS
CVE-2023-2992HIGH

An unauthenticated  denial of service vulnerability exists in the SMM v1, SMM v2, and FPC management web server which can be triggered under crafted conditions. Rebooting SMM or FPC will restore access to the management web server.

26 Jun 2023
7.5
CVSS