Thinkcentre M910z Firmware Security Vulnerabilities and Issues — Thinkcentre M910z Firmware CVE List

Lucene search

LenovoThinkcentre M910z Firmware

4 matches found

CVE•added 2019/08/29 12:15 a.m.•155 views

CVE-2019-10724

There is a vulnerability with the Dolby DAX2 API system services in which a low-privileged user can terminate arbitrary processes that are running at a higher privilege. The following are affected products and versions: Legion Y520T_Z370 6.0.1.8642, AIO310-20IAP 6.0.1.8642, AIO510-22ISH 6.0.1.8642,...

6.8CVSS6.5AI score0.00306EPSS

CVE•added 2019/11/12 9:15 p.m.•99 views

CVE-2019-6170

A potential vulnerability in the SMI callback function used in the Legacy USB driver using boot services structure in runtime phase in some Lenovo ThinkPad models may allow arbitrary code execution.

6.4CVSS7.3AI score0.00074EPSS

CVE•added 2019/11/12 9:15 p.m.•62 views

CVE-2019-6172

A potential vulnerability in the SMI callback function used in Legacy USB driver using passed parameter without sufficient checking in some Lenovo ThinkPad models may allow arbitrary code execution.

6.4CVSS7.3AI score0.00093EPSS

CVE•added 2020/11/11 6:15 p.m.•43 views

CVE-2020-8353

Prior to August 10, 2020, some Lenovo Desktop and Workstation systems were shipped with the Embedded Host Based Configuration (EHBC) feature of Intel AMT enabled. This could allow an administrative user with local access to configure Intel AMT.

6.7CVSS6.3AI score0.00049EPSS