10 matches found
Code injection
A potential vulnerability in the LenovoFlashDeviceInterface SMI handler may allow an attacker with local access and elevated privileges to execute arbitrary code...
CVE-2023-2290
A potential vulnerability in the LenovoFlashDeviceInterface SMI handler may allow an attacker with local access and elevated privileges to execute arbitrary code...
CVE-2023-2290
CVE-2023-2290 affects the Lenovo Flash Device Interface SMI handler (LenovoThinkPad/Lenovo Flash Device Interface component). The vulnerability, described across multiple feeds, allows a user who already has local access and has elevated privileges to execute arbitrary code via the LenovoFlashDev...
CVE-2023-2290
A potential vulnerability in the LenovoFlashDeviceInterface SMI handler may allow an attacker with local access and elevated privileges to execute arbitrary code...
CVE-2022-1108
A potential vulnerability due to improper buffer validation in the SMI handler LenovoFlashDeviceInterface in Thinkpad X1 Fold Gen 1 could be exploited by an attacker with local access and elevated privileges to execute arbitrary code...
CVE-2022-1108
A potential vulnerability due to improper buffer validation in the SMI handler LenovoFlashDeviceInterface in Thinkpad X1 Fold Gen 1 could be exploited by an attacker with local access and elevated privileges to execute arbitrary code...
Buffer overflow
A potential vulnerability due to improper buffer validation in the SMI handler LenovoFlashDeviceInterface in Thinkpad X1 Fold Gen 1 could be exploited by an attacker with local access and elevated privileges to execute arbitrary code...
CVE-2022-1108
A potential vulnerability due to improper buffer validation in the SMI handler LenovoFlashDeviceInterface in Thinkpad X1 Fold Gen 1 could be exploited by an attacker with local access and elevated privileges to execute arbitrary code...
The vulnerability of the LenovoFlashDeviceInterface interface in the System Management Interrupt (SMI) handling of the BIOS of ThinkPad notebook software allows a attacker to execute arbitrary code with elevated privileges.
The vulnerability of the LenovoFlashDeviceInterface interface in the System Management Interrupt SMI handling of BIOS microprogramming systems in ThinkPad laptops is related to the execution of operations outside of the buffer in memory. Exploiting this vulnerability allows an attacker to execute...
Lenovo ThinkPad 缓冲区错误漏洞
Lenovo ThinkPad is a portable computer from Lenovo, a Chinese company. The Lenovo ThinkPad BIOS suffers from a buffer error vulnerability that originates from a boundary error in the LenovoFlashDeviceInterface within the SMI handler. A local attacker could run a specially crafted program to trigg...