Lenovo Ideacentre Mini 5-01Imh05 Firmware vulnerabilities
7 known vulnerabilities affecting lenovo/ideacentre_mini_5-01imh05_firmware.
Total CVEs
7
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM6
Vulnerabilities
Page 1 of 1
CVE-2023-45076MEDIUMCVSS 6.7fixed in o4ekt1ba2023-11-08
CVE-2023-45076 [MEDIUM] CWE-125 CVE-2023-45076: A memory leakage vulnerability was reported in the 534D0140 DXE driver that may allow a local attack
A memory leakage vulnerability was reported in the 534D0140 DXE driver that may allow a local attacker with elevated privileges to write to NVRAM variables.
nvd
CVE-2023-45077MEDIUMCVSS 6.7fixed in o4ekt1ba2023-11-08
CVE-2023-45077 [MEDIUM] CWE-125 CVE-2023-45077: A memory leakage vulnerability was reported in the 534D0740 DXE driver that may allow a local attack
A memory leakage vulnerability was reported in the 534D0740 DXE driver that may allow a local attacker with elevated privileges to write to NVRAM variables.
nvd
CVE-2023-45079MEDIUMCVSS 6.7fixed in o4ekt1ba2023-11-08
CVE-2023-45079 [MEDIUM] CWE-125 CVE-2023-45079: A memory leakage vulnerability was reported in the NvmramSmm SMM driver that may allow a local attac
A memory leakage vulnerability was reported in the NvmramSmm SMM driver that may allow a local attacker with elevated privileges to write to NVRAM variables.
nvd
CVE-2023-45078MEDIUMCVSS 6.7fixed in o4ekt1ba2023-11-08
CVE-2023-45078 [MEDIUM] CWE-125 CVE-2023-45078: A memory leakage vulnerability was reported in the DustFilterAlertSmm SMM driver that may allow a lo
A memory leakage vulnerability was reported in the DustFilterAlertSmm SMM driver that may allow a local attacker with elevated privileges to write to NVRAM variables.
nvd
CVE-2023-45075MEDIUMCVSS 6.7fixed in o4ekt1ba2023-11-08
CVE-2023-45075 [MEDIUM] CWE-125 CVE-2023-45075: A memory leakage vulnerability was reported in the SWSMI_Shadow DXE driver that may allow a local at
A memory leakage vulnerability was reported in the SWSMI_Shadow DXE driver that may allow a local attacker with elevated privileges to write to NVRAM variables.
nvd
CVE-2022-48181HIGHCVSS 7.8fixed in o4ekt19a2023-06-05
CVE-2022-48181 [MEDIUM] CWE-787 CVE-2022-48181: An ErrorMessage driver stack-based buffer overflow vulnerability in BIOS of some ThinkPad models cou
An ErrorMessage driver stack-based buffer overflow vulnerability in BIOS of some ThinkPad models could allow an attacker with local access to elevate their privileges and execute arbitrary code.
nvd
CVE-2022-40137MEDIUMCVSS 6.7vo4ekt17a2023-01-30
CVE-2022-40137 [MEDIUM] CWE-120 CVE-2022-40137: A buffer overflow in the WMI SMI Handler in some Lenovo models may allow an attacker with local acce
A buffer overflow in the WMI SMI Handler in some Lenovo models may allow an attacker with local access and elevated privileges to execute arbitrary code.
nvd