Skip to main content

E53 80 Firmware

3 CVEs product

Monthly

CVE-2020-8323 MEDIUM This Month

A potential vulnerability in the SMI callback function used in the Legacy SD driver in some Lenovo ThinkPad, ThinkStation, and Lenovo Notebook models may allow arbitrary code execution. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

RCE Lenovo 330 14Ast Firmware 330 15Ast Firmware 330 17Ast Firmware +169
NVD
CVSS 3.1
6.7
EPSS
0.3%
CVE-2020-8322 MEDIUM This Month

A potential vulnerability in the SMI callback function used in the Legacy USB driver in some Lenovo Notebook and ThinkStation models may allow arbitrary code execution. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

RCE Lenovo 330 14Ast Firmware 330 15Ast Firmware 330 17Ast Firmware +48
NVD
CVSS 3.1
6.7
EPSS
0.3%
CVE-2019-10724 MEDIUM This Month

There is a vulnerability with the Dolby DAX2 API system services in which a low-privileged user can terminate arbitrary processes that are running at a higher privilege. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Legion Y520T Z370 Firmware Aio310 20Iap Firmware Aio510 22Ish Firmware Aio510 23Ish Firmware +104
NVD
CVSS 3.0
6.5
EPSS
1.2%
EPSS 0% CVSS 6.7
MEDIUM This Month

A potential vulnerability in the SMI callback function used in the Legacy SD driver in some Lenovo ThinkPad, ThinkStation, and Lenovo Notebook models may allow arbitrary code execution. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

RCE Lenovo 330 14Ast Firmware +171
NVD
EPSS 0% CVSS 6.7
MEDIUM This Month

A potential vulnerability in the SMI callback function used in the Legacy USB driver in some Lenovo Notebook and ThinkStation models may allow arbitrary code execution. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

RCE Lenovo 330 14Ast Firmware +50
NVD
EPSS 1% CVSS 6.5
MEDIUM This Month

There is a vulnerability with the Dolby DAX2 API system services in which a low-privileged user can terminate arbitrary processes that are running at a higher privilege. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Legion Y520T Z370 Firmware Aio310 20Iap Firmware +106
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy