A buffer over-read vulnerability was reported in the ThinkPadX13s BIOS PersistenceConfigDxe driver that could allow a local attacker with elevated privileges to cause information disclosure.
References
Link | Resource |
---|---|
https://support.lenovo.com/us/en/product_security/LEN-103709 | Patch Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
15 May 2023, 15:02
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:h:lenovo:thinkpas_x13s:-:*:*:*:*:*:*:* |
cpe:2.3:o:lenovo:thinkpad_x13s_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:lenovo:thinkpad_x13s:-:*:*:*:*:*:*:* |
First Time |
Lenovo thinkpad X13s Firmware
Lenovo thinkpad X13s |
11 Jan 2023, 22:00
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://support.lenovo.com/us/en/product_security/LEN-103709 - Patch, Vendor Advisory | |
CWE | CWE-125 | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 4.4 |
First Time |
Lenovo
Lenovo thinkpas X13s Lenovo thinkpas X13s Firmware |
|
CPE | cpe:2.3:o:lenovo:thinkpas_x13s_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:lenovo:thinkpas_x13s:-:*:*:*:*:*:*:* |
05 Jan 2023, 18:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-01-05 18:15
Updated : 2023-12-10 14:48
NVD link : CVE-2022-4432
Mitre link : CVE-2022-4432
CVE.ORG link : CVE-2022-4432
JSON object : View
Products Affected
lenovo
- thinkpad_x13s_firmware
- thinkpad_x13s