Vulnerabilities > Lenovo > Thinkbook 14 IIL Firmware > High

DATE CVE VULNERABILITY TITLE RISK
2023-01-26 CVE-2022-1890 Out-of-bounds Write vulnerability in Lenovo products
A buffer overflow in the ReadyBootDxe driver in some Lenovo Notebook products may allow an attacker with local privileges to execute arbitrary code.
local
low complexity
lenovo CWE-787
7.8
2023-01-26 CVE-2022-1891 Classic Buffer Overflow vulnerability in Lenovo products
A buffer overflow in the SystemLoadDefaultDxe driver in some Lenovo Notebook products may allow an attacker with local privileges to execute arbitrary code.
local
low complexity
lenovo CWE-120
7.8
2023-01-26 CVE-2022-1892 Classic Buffer Overflow vulnerability in Lenovo products
A buffer overflow in the SystemBootManagerDxe driver in some Lenovo Notebook products may allow an attacker with local privileges to execute arbitrary code.
local
low complexity
lenovo CWE-120
7.8