Lenovo: >> Thinkpad X1 Yoga Firmware >> 2020-07-17 Security Vulnerabilities
During an internal product security audit a potential vulnerability due to use of Boot Services in the SmmOEMInt15 SMI handler was discovered in some ThinkPad models could be exploited by an attacker with elevated privileges that could allow for execution of code.
CVSS Score
6.7
EPSS Score
0.0
Published
2022-04-22
In some Lenovo ThinkPad products, one BIOS region is not properly included in the checks, allowing injection of arbitrary code.
CVSS Score
6.8
EPSS Score
0.001
Published
2018-07-19