CVE-2022-4435
https://notcve.org/view.php?id=CVE-2022-4435
A buffer over-read vulnerability was reported in the ThinkPadX13s BIOS LenovoRemoteConfigUpdateDxe driver that could allow a local attacker with elevated privileges to cause information disclosure. • https://support.lenovo.com/us/en/product_security/LEN-103709 • CWE-125: Out-of-bounds Read CWE-126: Buffer Over-read •
CVE-2022-4434
https://notcve.org/view.php?id=CVE-2022-4434
A buffer over-read vulnerability was reported in the ThinkPadX13s BIOS driver that could allow a local attacker with elevated privileges to cause information disclosure. • https://support.lenovo.com/us/en/product_security/LEN-103709 • CWE-125: Out-of-bounds Read CWE-126: Buffer Over-read •
CVE-2022-4433
https://notcve.org/view.php?id=CVE-2022-4433
A buffer over-read vulnerability was reported in the ThinkPadX13s BIOS LenovoSetupConfigDxe driver that could allow a local attacker with elevated privileges to cause information disclosure. • https://support.lenovo.com/us/en/product_security/LEN-103709 • CWE-125: Out-of-bounds Read CWE-126: Buffer Over-read •
CVE-2022-4432
https://notcve.org/view.php?id=CVE-2022-4432
A buffer over-read vulnerability was reported in the ThinkPadX13s BIOS PersistenceConfigDxe driver that could allow a local attacker with elevated privileges to cause information disclosure. • https://support.lenovo.com/us/en/product_security/LEN-103709 • CWE-125: Out-of-bounds Read CWE-126: Buffer Over-read •
CVE-2019-19705
https://notcve.org/view.php?id=CVE-2019-19705
Realtek Audio Drivers for Windows, as used on the Lenovo ThinkPad X1 Carbon 20A7, 20A8, 20BS, and 20BT before 6.0.8882.1 and 20KH and 20KG before 6.0.8907.1 (and on many other Lenovo and non-Lenovo products), mishandles DLL preloading. Realtek Audio Drivers para Windows, como se usan en Lenovo ThinkPad X1 Carbon 20A7, 20A8, 20BS y 20BT anteriores a 6.0.8882.1 y 20KH y 20KG anteriores a 6.0.8907.1 (y en muchos otros productos Lenovo y no Lenovo), manejan mal la precarga de DLL. • https://support.lenovo.com/us/en/product_security/ps500315-realtek-audio-driver-vulnerability • CWE-428: Unquoted Search Path or Element •