Vulnerabilities > Lenovo > Thinkpad Thinkpad S3 2ND GEN Firmware > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-10-30 CVE-2022-48189 Unspecified vulnerability in Lenovo products
An SMM driver input validation vulnerability in the BIOS of some ThinkPad models could allow an attacker with local access and elevated privileges to execute arbitrary code.
local
low complexity
lenovo
6.7
2023-06-26 CVE-2023-2290 Unspecified vulnerability in Lenovo products
A potential vulnerability in the LenovoFlashDeviceInterface SMI handler may allow an attacker with local access and elevated privileges to execute arbitrary code.
local
low complexity
lenovo
6.7