cbcvebase.
CVE-2023-43570
published 2023-11-08

CVE-2023-43570: A potential vulnerability was reported in the SMI callback function of the OemSmi driver that may allow a local attacker with elevated permissions to execute…

medium6.7CVSS 3.1
AVLACLPRHUINSUCHIHAH
A potential vulnerability was reported in the SMI callback function of the OemSmi driver that may allow a local attacker with elevated permissions to execute arbitrary code.

Affected

82 ranges· showing 25
VendorProductVersion rangeFixed in
lenovodesktop_bios
lenovoideacentre_3-07ada05_firmware< o4fkt39ao4fkt39a
lenovoideacentre_3-07imb05_firmware< m2vkt21am2vkt21a
lenovoideacentre_5-14imb05_firmware< o4hkt3cao4hkt3ca
lenovoideacentre_5-14iob6_firmware< m3gkt3dam3gkt3da
lenovoideacentre_5_14iab7_firmware< m42kt46am42kt46a
lenovoideacentre_5_14irb8_firmware< m4ukt36am4ukt36a
lenovoideacentre_aio_3-22iil5_firmware< o56kt24ao56kt24a
lenovoideacentre_aio_3-22imb05_firmware< o4rkt31ao4rkt31a
lenovoideacentre_aio_3-22itl6_firmware< o5akt34ao5akt34a
lenovoideacentre_aio_3-24alc6_firmware< o5bkt25ao5bkt25a
lenovoideacentre_aio_3-24iil5_firmware< o56kt24ao56kt24a
lenovoideacentre_aio_3-24imb05_firmware< o4rkt31ao4rkt31a
lenovoideacentre_aio_3-24itl6_firmware< o5akt34ao5akt34a
lenovoideacentre_aio_3-27imb05_firmware< o4rkt31ao4rkt31a
lenovoideacentre_aio_3-27itl6_firmware< o5akt34ao5akt34a
lenovoideacentre_aio_3_21itl7_firmware< o5akt34ao5akt34a
lenovoideacentre_aio_3_22iap7_firmware< o5nkt33ao5nkt33a
lenovoideacentre_aio_3_24iap7_firmware< o5nkt33ao5nkt33a
lenovoideacentre_aio_3_27iap7_firmware< o5nkt33ao5nkt33a
lenovoideacentre_aio_5_24iah7_firmware< o5rkt41ao5rkt41a
lenovoideacentre_aio_5_27iah7_firmware< o5rkt41ao5rkt41a
lenovoideacentre_c5-14imb05_firmware< o4hkt3cao4hkt3ca
lenovoideacentre_creator_5-14iob6_firmware< m3gkt3dam3gkt3da
lenovoideacentre_g5-14amr05_firmware< o4zkt2bao4zkt2ba