CVE-2018-9062
published 2018-07-19CVE-2018-9062: In some Lenovo ThinkPad products, one BIOS region is not properly included in the checks, allowing injection of arbitrary code.
medium6.8CVSS 3.1
AVPACLPRNUINSUCHIHAH
In some Lenovo ThinkPad products, one BIOS region is not properly included in the checks, allowing injection of arbitrary code.
Affected
43 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| lenovo | e42-80_firmware | < 2wcn40ww | 2wcn40ww |
| lenovo | e42-80_isk_firmware | < 0zcn48ww | 0zcn48ww |
| lenovo | e52-80_firmware | < 2wcn40ww | 2wcn40ww |
| lenovo | e52-80_isk_firmware | < 0zcn48ww | 0zcn48ww |
| lenovo | miix_720-12ikb_firmware | < 3scn68ww | 3scn68ww |
| lenovo | thinkpad_e480_firmware | < r0pet47w | r0pet47w |
| lenovo | thinkpad_e580_firmware | < r0pet47w | r0pet47w |
| lenovo | thinkpad_l380_firmware | < r0ret28w | r0ret28w |
| lenovo | thinkpad_l480_firmware | < r0qet47w | r0qet47w |
| lenovo | thinkpad_l580_firmware | < r0qet47w | r0qet47w |
| lenovo | thinkpad_p51_firmware | < n1uet71w | n1uet71w |
| lenovo | thinkpad_p51s_firmware | < n1vet45w | n1vet45w |
| lenovo | thinkpad_p52_firmware | < n2cet28w | n2cet28w |
| lenovo | thinkpad_p52s_firmware | < n27et27w | n27et27w |
| lenovo | thinkpad_p71_firmware | < n1tet50w | n1tet50w |
| lenovo | thinkpad_p72_firmware | < n2cet28w | n2cet28w |
| lenovo | thinkpad_s1_firmware | < r0het48w | r0het48w |
| lenovo | thinkpad_t25_firmware | < n1qet77w | n1qet77w |
| lenovo | thinkpad_t470_firmware | < n1qet77w | n1qet77w |
| lenovo | thinkpad_t470p_firmware | < r0fet44w | r0fet44w |
| lenovo | thinkpad_t470s_firmware | < n1wet49w | n1wet49w |
| lenovo | thinkpad_t480_firmware | < n24et41w | n24et41w |
| lenovo | thinkpad_t480s_firmware | < n22et48w | n22et48w |
| lenovo | thinkpad_t570_firmware | < n1vet45w | n1vet45w |
| lenovo | thinkpad_t580_firmware | < n27et27w | n27et27w |