CVSS: 7.2EPSS: 0%CPEs: 2EXPL: 0CVE-2024-7756
https://notcve.org/view.php?id=CVE-2024-7756
13 Sep 2024 — A potential vulnerability was reported in the ThinkPad L390 Yoga and 10w Notebook that could allow a local attacker to escalate privileges by accessing an embedded UEFI shell. • https://support.lenovo.com/us/en/product_security/LEN-165524 • CWE-489: Active Debug Code •
CVSS: 7.2EPSS: 0%CPEs: 338EXPL: 0CVE-2019-6171
https://notcve.org/view.php?id=CVE-2019-6171
19 Aug 2019 — A vulnerability was reported in various BIOS versions of older ThinkPad systems that could allow a user with administrative privileges or physical access the ability to update the Embedded Controller with unsigned firmware. Una vulnerabilidad fue reportada en varias versiones de BIOS de sistemas ThinkPad más antiguos, que podría permitir a un usuario con privilegios administrativos o acceso físico la capacidad de actualizar el Controlador Incorporado con firmware sin firmar. • https://support.lenovo.com/solutions/LEN-27764 •