Lucene search
+L

4 matches found

RedhatCVE
RedhatCVE
added 2025/08/01 1:17 a.m.5 views

CVE-2025-4424

The vulnerability was identified in the code developed specifically for Lenovo. Please visit "Lenovo Product Security Advisories and Announcements" webpage for more information about the vulnerability. https://support.lenovo.com/us/en/productsecurity/home...

6CVSS7.2AI score0.00164EPSS
Exploits0References1
NVD
NVD
added 2025/07/30 1:15 a.m.6 views

CVE-2025-4424

The vulnerability was identified in the code developed specifically for Lenovo. Please visit "Lenovo Product Security Advisories and Announcements" webpage for more information about the vulnerability. https://support.lenovo.com/us/en/productsecurity/home...

6CVSS0.00164EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/07/30 12:43 a.m.1 views

CVE-2025-4424 SetupAutomationSmm : Arbitrary calls to SmmSetVariable with unsanitised arguments in SMI handler

The vulnerability was identified in the code developed specifically for Lenovo. Please visit "Lenovo Product Security Advisories and Announcements" webpage for more information about the vulnerability. https://support.lenovo.com/us/en/productsecurity/home...

6CVSS7.1AI score0.00164EPSS
Exploits0References2
CVE
CVE
added 2025/07/30 12:43 a.m.22 views

CVE-2025-4424

CVE-2025-4424 affects InsydeH2O firmware (Lenovo context) with an arbitrary call to SmmSetVariable using unsanitized parameters in an SMI handler. Root cause: unsafeguarded SMM variable writes allow modification of firmware state from a local attacker with high privileges. Impact: integrity impac...

6CVSS6.6AI score0.00164EPSS
Exploits0References2
Rows per page
Query Builder