Skip to main content

Thinkstation P900 Firmware

4 CVEs product

Monthly

CVE-2021-3719 MEDIUM This Month

A potential vulnerability in the SMI callback function that saves and restore boot script tables used for resuming from sleep state in some ThinkCentre and ThinkStation models may allow an attacker. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

RCE Thinkcentre E93 Firmware Thinkcentre M600 Firmware Thinkcentre M700 Tiny Firmware Thinkcentre M73 Firmware +16
NVD
CVSS 3.1
6.7
EPSS
0.2%
CVE-2020-8321 MEDIUM This Month

A potential vulnerability in the SMI callback function used in the System Lock Preinstallation driver in some Lenovo Notebook and ThinkStation models may allow arbitrary code execution. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

RCE Lenovo 130 14Ast Firmware 130 14Ikb Firmware 130 15Ast Firmware +169
NVD
CVSS 3.1
6.7
EPSS
0.3%
CVE-2019-6156 LOW PATCH Monitor

In Lenovo systems, SMM BIOS Write Protection is used to prevent writes to SPI Flash. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity.

Lenovo Information Disclosure 510 15Ikl Firmware 510S 08Ikl Firmware Ideacentre 300 20Ish Firmware +174
NVD
CVSS 3.0
3.3
EPSS
0.2%
CVE-2017-3753 MEDIUM This Month

A vulnerability has been identified in some Lenovo products that use UEFI (BIOS) code developed by American Megatrends, Inc. Rated medium severity (CVSS 6.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

RCE Code Injection Lenovo Ideacentre 300 20Ish Firmware Ideacentre 300S 11Ish Firmware +109
NVD
CVSS 3.0
6.8
EPSS
0.0%
EPSS 0% CVSS 6.7
MEDIUM This Month

A potential vulnerability in the SMI callback function that saves and restore boot script tables used for resuming from sleep state in some ThinkCentre and ThinkStation models may allow an attacker. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

RCE Thinkcentre E93 Firmware Thinkcentre M600 Firmware +18
NVD
EPSS 0% CVSS 6.7
MEDIUM This Month

A potential vulnerability in the SMI callback function used in the System Lock Preinstallation driver in some Lenovo Notebook and ThinkStation models may allow arbitrary code execution. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

RCE Lenovo 130 14Ast Firmware +171
NVD
EPSS 0% CVSS 3.3
LOW PATCH Monitor

In Lenovo systems, SMM BIOS Write Protection is used to prevent writes to SPI Flash. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity.

Lenovo Information Disclosure 510 15Ikl Firmware +176
NVD
EPSS 0% CVSS 6.8
MEDIUM This Month

A vulnerability has been identified in some Lenovo products that use UEFI (BIOS) code developed by American Megatrends, Inc. Rated medium severity (CVSS 6.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

RCE Code Injection Lenovo +111
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy