Vulnerability Details CVE-2022-4433
A buffer over-read vulnerability was reported in the ThinkPadX13s BIOS LenovoSetupConfigDxe driver that could allow a local attacker with elevated privileges to cause information disclosure.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 14.9%
CVSS Severity
CVSS v3 Score 6.7
References
Products affected by CVE-2022-4433
-
cpe:2.3:h:lenovo:thinkpad_x13s:-
-
cpe:2.3:o:lenovo:thinkpad_x13s_firmware:1.46