Shodan
Vulnerabilities
Vulnerable Software
Lenovo:  Security Vulnerabilities
CVE-2024-45103
A valid, authenticated LXCA user may be able to unmanage an LXCA managed device in through the LXCA web interface without sufficient privileges.
CVSS Score
4.3
EPSS Score
0.002
Published
2024-09-13
CVE-2023-1577
A path hijacking vulnerability was reported in Lenovo Driver Manager prior to version 3.1.1307.1308 that could allow a local user to execute code with elevated privileges.
CVSS Score
7.8
EPSS Score
0.001
Published
2024-07-31
CVE-2017-3772
A vulnerability was reported in Lenovo PC Manager versions prior to 2.6.40.3154 that could allow an attacker to cause a system reboot.
CVSS Score
5.5
EPSS Score
0.001
Published
2024-07-31
CVE-2019-6197
A vulnerability was reported in Lenovo PC Manager prior to version 2.8.90.11211 that could allow a local attacker to escalate privileges.
CVSS Score
7.8
EPSS Score
0.001
Published
2024-07-31
CVE-2019-6198
A vulnerability was reported in Lenovo PC Manager prior to version 2.8.90.11211 that could allow a local attacker to escalate privileges.
CVSS Score
7.8
EPSS Score
0.001
Published
2024-07-31
CVE-2024-2659
A command injection vulnerability was identified in SMM/SMM2 and FPC that could allow an authenticated user with elevated privileges to execute system commands when performing a specific administrative function.
CVSS Score
7.2
EPSS Score
0.004
Published
2024-04-15
CVE-2024-23591
ThinkSystem SR670V2 servers manufactured from approximately June 2021 to July 2023 were left in Manufacturing Mode which could allow an attacker with privileged logical access to the host or physical access to server internals to modify or disable Intel Boot Guard firmware integrity, SPS security, and other SPS configuration setting. The server’s NIST SP 800-193-compliant Platform Firmware Resiliency (PFR) security subsystem significantly mitigates this issue.
CVSS Score
2.0
EPSS Score
0.0
Published
2024-02-16
CVE-2023-5080
A privilege escalation vulnerability was reported in some Lenovo tablet products that could allow local applications access to device identifiers and system commands.
CVSS Score
6.8
EPSS Score
0.0
Published
2024-01-19
CVE-2023-5081
An information disclosure vulnerability was reported in the Lenovo Tab M8 HD that could allow a local application to gather a non-resettable device identifier.
CVSS Score
3.3
EPSS Score
0.001
Published
2024-01-19
CVE-2023-6043
A privilege escalation vulnerability was reported in Lenovo Vantage that could allow a local attacker to bypass integrity checks and execute arbitrary code with elevated privileges.
CVSS Score
7.8
EPSS Score
0.0
Published
2024-01-19


Products
Pricing
Contact Us

Shodan ® - All rights reserved