Thinkpad X1 Yoga 4th Gen Firmware Security Vulnerabilities and Issues — Thinkpad X1 Yoga 4th Gen Firmware CVE List

Lucene search

LenovoThinkpad X1 Yoga 4th Gen Firmware

4 matches found

CVE•added 2020/07/22 2:15 p.m.•69 views

CVE-2019-18618

Incorrect access control in the firmware of Synaptics VFS75xx family fingerprint sensors that include external flash (all versions prior to 2019-11-15) allows a local administrator or physical attacker to compromise the confidentiality of sensor data via injection of an unverified partition table.

6CVSS6.4AI score0.00275EPSS

CVE•added 2023/10/30 3:15 p.m.•41 views

CVE-2022-4574

An SMI handler input validation vulnerability in the BIOS of some ThinkPad models could allow an attacker with local access and elevated privileges to execute arbitrary code.

6.7CVSS6.7AI score0.00022EPSS

CVE•added 2023/10/30 3:15 p.m.•41 views

CVE-2022-48189

An SMM driver input validation vulnerability in the BIOS of some ThinkPad models could allow an attacker with local access and elevated privileges to execute arbitrary code.

6.7CVSS6.7AI score0.00022EPSS

CVE•added 2023/06/26 8:15 p.m.•37 views

CVE-2023-2290

A potential vulnerability in the LenovoFlashDeviceInterface SMI handler may allow an attacker with local access and elevated privileges to execute arbitrary code.

6.7CVSS6.7AI score0.00033EPSS