1169 matches found
LXCA User Account Names Exposed To Unauthenticated Users Who Can Access the Web User Interface - lu
Lenovo Security Advisory: LEN-16335 Potential Impact: LXCA user account names may be exposed to unauthenticated users with access to the LXCA web user interface Severity: Medium Scope of Impact: Lenovo Specific CVE Identifier: CVE-2017-3764 Summary Description: A vulnerability was identified in...
LXCA User Account Names Exposed To Unauthenticated Users Who Can Access the Web User Interface - Lenovo Support NL
No description provided...
Vulnerability in Service Assistance GUI for Lenovo Storage and Storwize Products - lu
Lenovo Security Advisory: LEN-18236 Potential Impact: A vulnerability in the Service Assistant GUI could allow a remote attacker to perform a privilege escalation. Severity: High Scope of Impact: Lenovo Storage/IBM Storwize CVE Identifier: CVE-2017-1710 Summary Description: A vulnerability in the...
Local Privilege Escalation in Huawei ME906s 4G LTE Mobile Broadband Driver - us
Lenovo Security Advisory: LEN-15815 Potential Impact: Local privilege escalation Severity: High Scope of Impact: Industry-Wide CVE Identifier: CVE-2017-8185 Summary Description: A local privilege escalation vulnerability has been discovered in the Huawei ME906s 4G LTE Mobile broadband driver used...
Local Privilege Escalation in Huawei ME906s 4G LTE Mobile Broadband Driver - Lenovo Support US
No description provided...
Locked Data on Intel 5400s and 6000p Solid State Drives Could be Corrupted by Malware - us
Lenovo Security Advisory: LEN-15217 Potential Impact: Drive data could be corrupted by malware even when locked Severity: Medium Scope of Impact: Industry wide Summary Description: A vulnerability has been reported by Intel, a manufacturer of Solid State Drives SSDs, with the Intel models 5400s a...
Locked Data on Intel 5400s and 6000p Solid State Drives Could be Corrupted by Malware - Lenovo Support US
No description provided...
Lenovo StorSelect DX8200C glibc, Linux Kernel and Cloudian Management Console Vulnerabilities - us
Lenovo Security Advisory: LEN-17538 Potential Impact: Arbitrary Code Execution Severity: High Scope of Impact: Industry-Wide CVE Identifier: CVE-2017-1000364, CVE-2017-1000366 Summary: Several vulnerabilities have been identified on the Lenovo StorSelect DX8200C MT 5120 running versions of Cloudi...
Lenovo StorSelect DX8200C glibc, Linux Kernel and Cloudian Management Console Vulnerabilities - Lenovo Support US
No description provided...
Secure BIOS/UEFI Set-up Incomplete in Lenovo E95 and ThinkCentre M710s/M710t - us
Lenovo Security Advisory: LEN-17417 Potential Impact: Unauthorized bootloader allowed to run during system boot, reducing protection against rootkits Severity: Medium Scope of Impact: Lenovo-specific CVE Identifier: CVE-2017-3771 Summary Description: System boot process is not adequately secured...
Secure BIOS/UEFI Set-up Incomplete in Lenovo E95 and ThinkCentre M710s/M710t - Lenovo Support US
No description provided...
Lenovo Android Tablet and Lenovo VIBE, Moto, and ZUK Mobile Phone Remote Code Execution Vulnerability - us
Lenovo Security Advisory: LEN-15374 Potential Impact: Remote code execution Severity: High Scope of Impact: All Lenovo Android tablets and the following mobile phones: all Lenovo VIBE and ZUK devices, and the Moto M XT1663 and Moto E3 XT1706 distributed by Lenovo. CVE Identifier: CVE-2017-3758,...
Lenovo VIBE, Moto, and ZUK Mobile Phone Remote Code Execution Vulnerability - Lenovo Support US
No description provided...
Attacker with Access to LXCA Filesystem Could Access Local LXCA Account Credentials and LXCA Authenticated Command Injection - us
Lenovo Security Advisory: LEN-16333 Potential Impact: An attacker who obtains access to the location where the LXCA file system is stored could access credentials of local LXCA accounts and Privilege escalation by an authenticated user Severity: Medium to High Scope of Impact: Lenovo Specific CVE...
Attacker with Access to LXCA Filesystem Could Access Local LXCA Account Credentials and LXCA Authenticated Command Injection - Lenovo Support US
No description provided...
Unquoted Service Path Privilege Escalation in ElanTech Touchpad Driver - us
Lenovo Security Advisory: LEN-14390 Potential Impact: Privilege Escalation Severity: Medium Scope of Impact: Industry-Wide CVE Identifier: CVE-2017-3757 Summary Description: An unquoted service path vulnerability was identified in the driver for the ElanTech Touchpad used on some Lenovo brand...
Unquoted Service Path Privilege Escalation in ElanTech Touchpad Driver - Lenovo Support US
No description provided...
ThinkPad USB 3.0 Ethernet Adapter Driver Privilege Escalation - Lenovo Support US
No description provided...
ThinkPad USB 3.0 Ethernet Adapter Driver Privilege Escalation - us
Lenovo Security Advisory: LEN-9896 Potential Impact: Privilege escalation and executable files without a valid signature Severity: High Scope of Impact: Lenovo Specific CVE Identifier: CVE-2017-3746 Summary Description: During an internal analysis, the ThinkPad USB 3.0 Ethernet Adapter part numbe...
Unquoted Service Path Privilege Escalation in ThinkPad Active Protection System - us
Lenovo Security Advisory: LEN-15765 Potential Impact: Privilege Escalation Severity: High Scope of Impact: Lenovo Specific CVE Identifier: CVE-2017-3756 Summary Description: A privilege escalation vulnerability was identified in Lenovo Active Protection System for ThinkPad systems. An attacker wi...
Unquoted Service Path Privilege Escalation in ThinkPad Active Protection System - Lenovo Support US
No description provided...
Login information processed by the IMM2 may be exposed to local IMM2 users - us
Lenovo Security Advisory: LEN-14054 Potential Impact: Disclosure of login credentials to user with local privileges Severity: Medium Scope of Impact: Lenovo Specific CVE Identifier: CVE-2017-3744 Summary Description: A risk has been identified in the IMM2 firmware of Lenovo System x servers where...
Login information processed by the IMM2 may be exposed to local IMM2 users - Lenovo Support US
No description provided...
Industry-wide OSPF routing vulnerability on Lenovo and IBM Networking Switches - us
Lenovo Security Advisory: LEN-14078 Potential Impact: Erasure or alteration of routing tables within a routing domain Severity: Medium Scope of Impact: Industry-Wide CVE Identifier: CVE-2017-3752 Summary Description: An industry-wide vulnerability has been identified in the implementation of the...
ThinkPad Compact USB Keyboard with TrackPoint Driver Unquoted Service Path - us
Lenovo Security Advisory: LEN-15061 Potential Impact: Privilege Escalation Severity: High Scope of Impact: Lenovo Specific CVE Identifier: CVE-2017-3751 Summary Description: An unquoted service path vulnerability was identified in the driver for the ThinkPad Compact USB Keyboard with TrackPoint...
ThinkPad Compact USB Keyboard with TrackPoint Driver Unquoted Service Path - Lenovo Support US
No description provided...
Industry-wide OSPF routing vulnerability on Lenovo and IBM Networking Switches - Lenovo Support US
No description provided...
Intel® PROSet/Wireless Software Denial of Service - us
Lenovo Security Advisory: LEN-14246 Potential Impact: Denial of service Severity: Medium Scope of Impact: Industry-Wide CVE Identifier: CVE-2016-8104 Summary Description: A buffer overflow security vulnerability has been identified in the Intel® PROSet/Wireless Software and Drivers before version...
Intel® PROSet/Wireless Software Denial of Service - Lenovo Support US
No description provided...
Some Lenovo Brand Notebooks Do Not Have BIOS Write Protection Configured - us
Lenovo Security Advisory: LEN-15084 Potential Impact: Attacker with physical or administrative access could flash malicious BIOS code Severity: High Scope of Impact: Lenovo Specific CVE Identifier: CVE-2017-3754 Summary Description: Some Lenovo brand notebook systems do not have write protections...
Some Lenovo Brand Notebooks Do Not Have BIOS Write Protection Configured - Lenovo Support US
No description provided...
Local Root Exploit on Lenovo VIBE Mobile Phones - us
Lenovo Security Advisory: LEN-15823 Potential Impact: Elevation of Privilege Severity: Medium Scope of Impact: Lenovo specific CVE Identifier: CVE-2017-3748, CVE-2017-3749, CVE-2017-3750 Summary Description: Vulnerabilities have been identified on Lenovo VIBE Mobile Phones that allow the user or ...
Local Root Exploit on Lenovo VIBE Mobile Phones - Lenovo Support US
No description provided...
Sierra Wireless WAN Driver Privilege Escalation - us
Lenovo Security Advisory: LEN-12739 Potential Impact: Local Privilege Escalation Severity: High Scope of Impact: Industry-Wide CVE Identifier: CVE-2017-9247 Summary Description: A vulnerability was identified in the Sierra Wireless WAN driver for Windows 7, 8 and 10 where a user with local...
Lenovo Nerve Center for Desktops Privilege Escalation - us
Lenovo Security Advisory: LEN-15046 Potential Impact: Privilege escalation Severity: High Scope of Impact: Lenovo Specific CVE Identifier: CVE-2017-3747 Summary Description: During an internal security review, a vulnerability was discovered in Lenovo Nerve Center for Windows 10 on Desktop systems...
Intel AMT Clickjacking Vulnerability - us
Lenovo Security Advisory: LEN-14005 Potential Impact: Information Disclosure Severity: Medium Scope of Impact: Industry-Wide CVE Identifier: CVE-2017-5697 Summary Description: Insufficient clickjacking protection in the Web User Interface of Intel® AMT firmware versions before 9.1.40.100,...
Lenovo Nerve Center for Desktops Privilege Escalation - Lenovo Support US
No description provided...
Intel AMT Clickjacking Vulnerability - Lenovo Support US
No description provided...
Sierra Wireless WAN Driver Privilege Escalation - Lenovo Support US
No description provided...
IBM Storwize for Lenovo initialization USB drives contain malware - Lenovo Support US
No description provided...
IBM Storwize for Lenovo initialization USB drives contain malware - us
Lenovo Security Advisory: LEN-14957 Potential Impact: Malware infection on system used to launch initialization tool Severity: Medium Summary Description: Some USB flash drives containing the initialization tool shipped with the IBM Storwize for Lenovo V3500, V3700 and V5000 Gen 1 storage systems...
Apache Struts Open Source Framework Remote Code Execution - Lenovo Support US
No description provided...
Apache Struts Open Source Framework Remote Code Execution - us
Lenovo Security Advisory: LEN-14200 Potential Impact: Remote code execution Scope of Impact: Industry-Wide CVE Identifier: CVE-2017-5638 Summary Description: Lenovo V3700 V2, Lenovo V3700 V2 XP, Lenovo V5030/V5030F and Storwize V7000 for Lenovo storage devices contain a vulnerability in Apache...
Lenovo StorSelect DX8200C HyperStore Use-after-free in the IPv6 implementation of the DCCP protocol in the Linux kernel - us
Lenovo Security Advisory: LEN-15183 Potential Impact: Privilege Escalation Severity: High Scope of Impact: Industry-Wide CVE Identifier: CVE-2017-6074 Summary: A vulnerability has been identified on the Lenovo StorSelect DX8200C MT 5120 running Cloudian HyperStore v6.1 and earlier. Lenovo...
Credentials sent through the Lenovo ToolsCenter may be exposed to local users - us
Lenovo Security Advisory: LEN-10810 Potential Impact: Sensitive information disclosure Severity: Medium Scope of Impact: Lenovo specific CVE Identifier: CVE-2017-3743 Summary Description: If multiple users are concurrently logged into a single system where one user is sending a command via the...
Lenovo XClarity Administrator Credential Disclosure - us
Lenovo Security Advisory: LEN-13671 Potential Impact: Disclosure of credentials to a non-administrative user Severity: High Scope of Impact: Lenovo Specific CVE Identifier: CVE-2017-3745 Summary Description: During an internal assessment, a vulnerability was identified in Lenovo XClarity...
Lenovo StorSelect DX8200C HyperStore Use-after-free in the IPv6 implementation of the DCCP protocol in the Linux kernel - Lenovo Support US
No description provided...
Lenovo XClarity Administrator Credential Disclosure - Lenovo Support US
No description provided...
Credentials sent through the Lenovo ToolsCenter may be exposed to local users - Lenovo Support US
No description provided...
Brocade Fibre Channel SAN Privilege Escalation - us
Lenovo Security Advisory: LEN-14794 Potential Impact: Local privilege escalation Severity: High Scope of Impact: Industry-Wide CVE Identifier: CVE-2016-8202 Summary Description: A privilege escalation vulnerability in Brocade Fibre Channel SAN products running Brocade Fabric OS FOS releases earli...