MEDIUM🇬🇧 English

CVE-2022-40136

CVSS 4.4v3.1pub. 2023-01-30upd. 2024-11-21

An information leak vulnerability in SMI Handler used to configure platform settings over WMI in some Lenovo models may allow an attacker with local access and elevated privileges to read SMM memory.

oryginał EN
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
  • Lenovo Ideacentre 3 07iab7

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Ideacentre 3 07iab7 Firmware

    OS
    Lenovo
    < m49kt1da
  • Lenovo Ideacentre 3 07imb05

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Ideacentre 3 07imb05 Firmware

    OS
    Lenovo
    < m2vkt1da
  • Lenovo Ideacentre 5 14acn6

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Ideacentre 5 14acn6 Firmware

    OS
    Lenovo
    < o5ekt21a
  • Lenovo Ideacentre 5 14iab7

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Ideacentre 5 14iab7 Firmware

    OS
    Lenovo
    < m42kt40a
  • Lenovo Ideacentre 5 14imb05

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Ideacentre 5 14imb05 Firmware

    OS
    Lenovo
    < o4hkt38a
  • Lenovo Ideacentre 5 14iob6

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Ideacentre 5 14iob6 Firmware

    OS
    Lenovo
    < m3gkt33a
  • Lenovo Ideacentre C5 14imb05

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Ideacentre C5 14imb05 Firmware

    OS
    Lenovo
    < o4hkt38a
  • Lenovo Ideacentre Creator 5 14iob6

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Ideacentre Creator 5 14iob6 Firmware

    OS
    Lenovo
    ≤ m3gkt33a
  • Lenovo Ideacentre G5 14imb05

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Ideacentre G5 14imb05 Firmware

    OS
    Lenovo
    < o4hkt38a
  • Lenovo Ideacentre Gaming 5 14acn6

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Ideacentre Gaming 5 14acn6 Firmware

    OS
    Lenovo
    < o5ekt21a
  • Lenovo Ideacentre Gaming 5 14iob6

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Ideacentre Gaming 5 14iob6 Firmware

    OS
    Lenovo
    < m3gkt33a
  • Lenovo Ideacentre Gaming 5 17acn7

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Ideacentre Gaming 5 17acn7 Firmware

    OS
    Lenovo
    < o5ekt21a
  • Lenovo Ideacentre Gaming 5 17iab7

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Ideacentre Gaming 5 17iab7 Firmware

    OS
    Lenovo
    < m42kt40a
  • Lenovo Legion C530 19icb

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Legion C530 19icb Firmware

    OS
    Lenovo
    < o4bkt20a
  • Lenovo Legion T5 26iob6

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Legion T5 26iob6 Firmware

    OS
    Lenovo
    < o54kt1da
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Referencje

Powiązane podatności

CVE-2019-6188CRITICAL9.8ten sam produkt

The BIOS tamper detection mechanism was not triggered in Lenovo ThinkPad T460p, BIOS versions up to R07ET90W, ...

CVE-2019-19705HIGH7.8ten sam produkt

Realtek Audio Drivers for Windows, as used on the Lenovo ThinkPad X1 Carbon 20A7, 20A8, 20BS, and 20BT before ...

CVE-2017-3771HIGH7.5ten sam produkt

System boot process is not adequately secured In Lenovo E95 and ThinkCentre M710s/M710t because systems were s...

CVE-2023-43567MEDIUM6.7ten sam produkt

A buffer overflow was reported in the LemSecureBootForceKey module in some Lenovo Desktop products that may al...

CVE-2023-43568MEDIUM4.4ten sam produkt

A buffer over-read was reported in the LemSecureBootForceKey module in some Lenovo Desktop products that may a...