Skip to main content

100E 2Nd Gen Firmware

2 CVEs product

Monthly

CVE-2021-3614 MEDIUM This Month

A vulnerability was reported on some Lenovo Notebook systems that could allow an attacker with physical access to elevate privileges under certain conditions during a BIOS update performed by Lenovo. Rated medium severity (CVSS 6.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Lenovo Information Disclosure Ideapad 1 11Ada05 Firmware Ideapad 1 14Ada05 Firmware V130 15Ikb Firmware +18
NVD
CVSS 3.1
6.8
EPSS
0.2%
CVE-2019-10724 MEDIUM This Month

There is a vulnerability with the Dolby DAX2 API system services in which a low-privileged user can terminate arbitrary processes that are running at a higher privilege. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Legion Y520T Z370 Firmware Aio310 20Iap Firmware Aio510 22Ish Firmware Aio510 23Ish Firmware +104
NVD
CVSS 3.0
6.5
EPSS
1.2%
EPSS 0% CVSS 6.8
MEDIUM This Month

A vulnerability was reported on some Lenovo Notebook systems that could allow an attacker with physical access to elevate privileges under certain conditions during a BIOS update performed by Lenovo. Rated medium severity (CVSS 6.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Lenovo Information Disclosure Ideapad 1 11Ada05 Firmware +20
NVD
EPSS 1% CVSS 6.5
MEDIUM This Month

There is a vulnerability with the Dolby DAX2 API system services in which a low-privileged user can terminate arbitrary processes that are running at a higher privilege. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Legion Y520T Z370 Firmware Aio310 20Iap Firmware +106
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy