CVSS: 6.8EPSS: 0%CPEs: 2EXPL: 0CVE-2024-7756
https://notcve.org/view.php?id=CVE-2024-7756
A potential vulnerability was reported in the ThinkPad L390 Yoga and 10w Notebook that could allow a local attacker to escalate privileges by accessing an embedded UEFI shell. • https://support.lenovo.com/us/en/product_security/LEN-165524 • CWE-489: Active Debug Code •
CVSS: 7.2EPSS: 0%CPEs: 338EXPL: 0CVE-2019-6171
https://notcve.org/view.php?id=CVE-2019-6171
A vulnerability was reported in various BIOS versions of older ThinkPad systems that could allow a user with administrative privileges or physical access the ability to update the Embedded Controller with unsigned firmware. Una vulnerabilidad fue reportada en varias versiones de BIOS de sistemas ThinkPad más antiguos, que podría permitir a un usuario con privilegios administrativos o acceso físico la capacidad de actualizar el Controlador Incorporado con firmware sin firmar. • https://support.lenovo.com/solutions/LEN-27764 •