Incorrect parameter validation in the synaTee component of Synaptics WBF drivers using an SGX enclave (all versions prior to 2019-11-15) allows a local user to execute arbitrary code in the enclave (that can compromise confidentiality of enclave data) via APIs that accept invalid pointers.
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HLenovo Thankpad A475
HWLenovowszystkie wersjeLenovo Thankpad A475 Firmware
OSLenovo< 5.02.3539.0026Lenovo Thankpad A485
HWLenovowszystkie wersjeLenovo Thankpad A485 Firmware
OSLenovo< 5.03.3542.0026Lenovo Thinkpad 25
HWLenovowszystkie wersjeLenovo Thinkpad 25 Firmware
OSLenovo< 5.2.3540.26Lenovo Thinkpad E480
HWLenovowszystkie wersjeLenovo Thinkpad E480 Firmware
OSLenovo< 5.2.321.26Lenovo Thinkpad E485
HWLenovowszystkie wersjeLenovo Thinkpad E485 Firmware
OSLenovo< 5.2.321.26Lenovo Thinkpad E490
HWLenovowszystkie wersjeLenovo Thinkpad E490 Firmware
OSLenovo< 5.2.321.26Lenovo Thinkpad E490s
HWLenovowszystkie wersjeLenovo Thinkpad E490s Firmware
OSLenovo< 5.2.321.26Lenovo Thinkpad E580
HWLenovowszystkie wersjeLenovo Thinkpad E580 Firmware
OSLenovo< 5.2.321.26Lenovo Thinkpad E585
HWLenovowszystkie wersjeLenovo Thinkpad E585 Firmware
OSLenovo< 5.2.321.26Lenovo Thinkpad E590
HWLenovowszystkie wersjeLenovo Thinkpad E590 Firmware
OSLenovo< 5.2.321.26Lenovo Thinkpad L480
HWLenovowszystkie wersjeLenovo Thinkpad L480 Firmware
OSLenovo< 5.3.3542.26Lenovo Thinkpad L580
HWLenovowszystkie wersjeLenovo Thinkpad L580 Firmware
OSLenovo< 5.3.3542.26Lenovo Thinkpad P1
HWLenovowszystkie wersjeLenovo Thinkpad P1 Firmware
OSLenovo< 5.3.3542.26Lenovo Thinkpad P1 Gen 2
HWLenovowszystkie wersjeLenovo Thinkpad P1 Gen 2 Firmware
OSLenovo< 6.0.36.1105Lenovo Thinkpad P43s
HWLenovowszystkie wersjeLenovo Thinkpad P43s Firmware
OSLenovo< 6.0.36.1105
Related vulnerabilities
In some Lenovo ThinkPads, an unquoted search path vulnerability was found in various versions of the Synaptics...
A local privilege escalation vulnerability was identified in the Realtek audio driver versions prior to 6.0.1....
An SMM driver input validation vulnerability in the BIOS of some ThinkPad models could allow an attacker with ...
A vulnerability due to improper write protection of UEFI variables was reported in the BIOS of some ThinkPad ...
A potential vulnerability in the LenovoFlashDeviceInterface SMI handler may allow an attacker with local acces...