CVSS: 9.8EPSS: 1%CPEs: 8EXPL: 0CVE-2019-6168
https://notcve.org/view.php?id=CVE-2019-6168
A vulnerability reported in Lenovo Service Bridge before version 4.1.0.1 could allow remote code execution. Se informa de una vulnerabilidad en Lenovo Service Bridge en versiones anteriores a la 4.1.0.1 que podría permitir la ejecución remota de código. • https://support.lenovo.com/solutions/LEN-27725 •
CVSS: 9.8EPSS: 1%CPEs: 8EXPL: 0CVE-2019-6167
https://notcve.org/view.php?id=CVE-2019-6167
A vulnerability reported in Lenovo Service Bridge before version 4.1.0.1 could allow remote code execution. Se informa de una vulnerabilidad en Lenovo Service Bridge en versiones anteriores a la 4.1.0.1 que podría permitir la ejecución remota de código. • https://support.lenovo.com/solutions/LEN-27725 •
CVSS: 8.8EPSS: 0%CPEs: 8EXPL: 0CVE-2019-6166
https://notcve.org/view.php?id=CVE-2019-6166
A vulnerability reported in Lenovo Service Bridge before version 4.1.0.1 could allow cross-site request forgery. Se informa de una vulnerabilidad en Lenovo Service Bridge en versiones anteriores a la 4.1.0.1 que podría permitir Cross-Site Request Forgery (CSRF). • https://support.lenovo.com/solutions/LEN-27725 • CWE-352: Cross-Site Request Forgery (CSRF) •
CVSS: 7.5EPSS: 0%CPEs: 24EXPL: 0CVE-2019-6163
https://notcve.org/view.php?id=CVE-2019-6163
A denial of service vulnerability was reported in Lenovo System Update before version 5.07.0084 that could allow service log files to be written to non-standard locations. Se comunicó una vulnerabilidad de denegación de servicio en Lenovo System Update en versiones anteriores a la 5.07.0084 que podría permitir que los archivos de registro de servicio sean escritos en ubicaciones no standard. • https://support.lenovo.com/solutions/LEN-27348 • CWE-404: Improper Resource Shutdown or Release •
CVSS: 3.3EPSS: 0%CPEs: 356EXPL: 0CVE-2019-6156
https://notcve.org/view.php?id=CVE-2019-6156
In Lenovo systems, SMM BIOS Write Protection is used to prevent writes to SPI Flash. While this provides sufficient protection, an additional layer of protection is provided by SPI Protected Range Registers (PRx). Lenovo was notified that after resuming from S3 sleep mode in various versions of BIOS for Lenovo systems, the PRx is not set. This does not impact the SMM BIOS Write Protection, which keeps systems protected. En los sistemas Lenovo, SMM BIOS Write Protection se utiliza para evitar la escritura en SPI Flash. • https://support.lenovo.com/solutions/LEN-26332 • CWE-667: Improper Locking •