Shodan
Vulnerabilities
Vulnerable Software
Lenovo:  >> Thinkpad T470  Security Vulnerabilities
CVE-2022-4575
A vulnerability due to improper write protection of UEFI variables was reported in the BIOS of some ThinkPad models could allow an attacker with physical or local access and elevated privileges the ability to bypass Secure Boot.
CVSS Score
6.7
EPSS Score
0.0
Published
2023-10-30
CVE-2019-19705
Realtek Audio Drivers for Windows, as used on the Lenovo ThinkPad X1 Carbon 20A7, 20A8, 20BS, and 20BT before 6.0.8882.1 and 20KH and 20KG before 6.0.8907.1 (and on many other Lenovo and non-Lenovo products), mishandles DLL preloading.
CVSS Score
7.8
EPSS Score
0.001
Published
2022-12-26
CVE-2021-3786
A potential vulnerability in the SMI callback function used in CSME configuration of some Lenovo Notebook and ThinkPad systems could be used to leak out data out of the SMRAM range.
CVSS Score
4.4
EPSS Score
0.001
Published
2021-11-12
CVE-2021-3599
A potential vulnerability in the SMI callback function used to access flash device in some ThinkPad models may allow an attacker with local access and elevated privileges to execute arbitrary code.
CVSS Score
6.7
EPSS Score
0.001
Published
2021-11-12
CVE-2021-3462
A privilege escalation vulnerability in Lenovo Power Management Driver for Windows 10, prior to version 1.67.17.54, that could allow unauthorized access to the driver's device object.
CVSS Score
5.5
EPSS Score
0.001
Published
2021-04-13
CVE-2021-3463
A null pointer dereference vulnerability in Lenovo Power Management Driver for Windows 10, prior to version 1.67.17.54, that could cause systems to experience a blue screen error.
CVSS Score
4.2
EPSS Score
0.0
Published
2021-04-13
CVE-2020-8320
An internal shell was included in BIOS image in some ThinkPad models that could allow escalation of privilege.
CVSS Score
6.4
EPSS Score
0.0
Published
2020-06-09
CVE-2020-8323
A potential vulnerability in the SMI callback function used in the Legacy SD driver in some Lenovo ThinkPad, ThinkStation, and Lenovo Notebook models may allow arbitrary code execution.
CVSS Score
6.4
EPSS Score
0.001
Published
2020-06-09
CVE-2019-6192
A potential vulnerability has been reported in Lenovo Power Management Driver versions prior to 1.67.17.48 leading to a buffer overflow which could cause a denial of service.
CVSS Score
4.4
EPSS Score
0.015
Published
2019-12-10
CVE-2019-6170
A potential vulnerability in the SMI callback function used in the Legacy USB driver using boot services structure in runtime phase in some Lenovo ThinkPad models may allow arbitrary code execution.
CVSS Score
6.4
EPSS Score
0.0
Published
2019-11-12


Products
Pricing
Contact Us

Shodan ® - All rights reserved