cbcvebase.
CVE-2022-40136
published 2023-01-30

CVE-2022-40136: An information leak vulnerability in SMI Handler used to configure platform settings over WMI in some Lenovo models may allow an attacker with local access and…

medium4.4CVSS 3.1
AVLACLPRHUINSUCHINAN
An information leak vulnerability in SMI Handler used to configure platform settings over WMI in some Lenovo models may allow an attacker with local access and elevated privileges to read SMM memory.

Affected

148 ranges· showing 25
VendorProductVersion rangeFixed in
lenovobios
lenovoideacentre_3-07ada05_firmware< o4fkt29ao4fkt29a
lenovoideacentre_3-07imb05_firmware< m2vkt1dam2vkt1da
lenovoideacentre_3_07iab7_firmware< m49kt1dam49kt1da
lenovoideacentre_5-14acn6_firmware< o5ekt21ao5ekt21a
lenovoideacentre_5-14are05_firmware< o4zkt29ao4zkt29a
lenovoideacentre_5-14imb05_firmware< o4hkt38ao4hkt38a
lenovoideacentre_5-14iob6_firmware< m3gkt33am3gkt33a
lenovoideacentre_510-15ick_firmware< o4kkt16ao4kkt16a
lenovoideacentre_510a-15arr_firmware< o4dkt43ao4dkt43a
lenovoideacentre_510a-15ick_firmware< o4kkt16ao4kkt16a
lenovoideacentre_510s-07icb_firmware< m22kt47am22kt47a
lenovoideacentre_510s-07ick_firmware< m30kt26am30kt26a
lenovoideacentre_5_14iab7_firmware< m42kt40am42kt40a
lenovoideacentre_720-18apr_firmware< m25kt61am25kt61a
lenovoideacentre_a340-22igm_firmware< o51kt12ao51kt12a
lenovoideacentre_a340-24igm_firmware< o51kt12ao51kt12a
lenovoideacentre_c5-14imb05_firmware< o4hkt38ao4hkt38a
lenovoideacentre_creator_5-14iob6_firmware<= m3gkt33a
lenovoideacentre_g5-14amr05_firmware< o4zkt29ao4zkt29a
lenovoideacentre_g5-14imb05_firmware< o4hkt38ao4hkt38a
lenovoideacentre_gaming_5-14acn6_firmware< o5ekt21ao5ekt21a
lenovoideacentre_gaming_5-14iob6_firmware< m3gkt33am3gkt33a
lenovoideacentre_gaming_5_17acn7_firmware< o5ekt21ao5ekt21a
lenovoideacentre_gaming_5_17iab7_firmware< m42kt40am42kt40a