2 matches found
CVE-2022-4574
The CVE describes a BIOS SMI handler input validation vulnerability in Lenovo ThinkPad models. A local, elevated-privilege attacker could exploit a flaw in the SMI handler to execute arbitrary code. The available documents identify the affected surface as the BIOS/SMI handler but do not specify e...
CVE-2022-4574
An SMI handler input validation vulnerability in the BIOS of some ThinkPad models could allow an attacker with local access and elevated privileges to execute arbitrary code...