Lenovo: >> Slim 7 Prox 14iah7 Firmware Security Vulnerabilities
A potential vulnerability was discovered in LCFC BIOS for some Lenovo consumer notebook models that could allow a local attacker with elevated privileges to execute arbitrary code due to improper buffer validation.
CVSS Score
6.7
EPSS Score
0.0
Published
2023-08-23
A potential vulnerability was discovered in LCFC BIOS for some Lenovo consumer notebook models that could allow a local attacker with elevated privileges under certain conditions the ability to enumerate Embedded Controller (EC) commands.
CVSS Score
4.4
EPSS Score
0.0
Published
2023-08-23
A potential vulnerability was discovered in LCFC BIOS for some Lenovo consumer notebook models that could allow a local attacker with elevated privileges to unlock UEFI variables due to a hard-coded SMI handler credential.
CVSS Score
6.7
EPSS Score
0.0
Published
2023-08-23
A potential vulnerability was discovered in LCFC BIOS for some Lenovo consumer notebook models that could allow a local attacker with elevated privileges to view incoming and returned data from SMI.
CVSS Score
4.4
EPSS Score
0.0
Published
2023-08-23
A potential vulnerability was discovered in LCFC BIOS for some Lenovo consumer notebook models that could allow a local attacker with elevated privileges to cause some peripherals to work abnormally due to an exposed Embedded Controller (EC) interface.
CVSS Score
6.7
EPSS Score
0.0
Published
2023-08-23