CVSS: 7.8EPSS: 0%CPEs: 142EXPL: 0CVE-2022-1892
https://notcve.org/view.php?id=CVE-2022-1892
23 Jan 2023 — A buffer overflow in the SystemBootManagerDxe driver in some Lenovo Notebook products may allow an attacker with local privileges to execute arbitrary code. • https://support.lenovo.com/us/en/product_security/LEN-91369 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') CWE-122: Heap-based Buffer Overflow •
CVSS: 10.0EPSS: 4%CPEs: 58EXPL: 0CVE-2015-5684
https://notcve.org/view.php?id=CVE-2015-5684
27 Mar 2020 — MITRE is populating this ID because it was assigned prior to Lenovo becoming a CNA. A buffer overflow vulnerability was reported, (fixed and publicly disclosed in 2015) in the Lenovo Service Engine (LSE), affecting various versions of BIOS for Lenovo Notebooks, that could allow a remote user to execute arbitrary code on the system. MITRE está completando este ID porque fue asignado antes de que Lenovo se convirtiera en un CNA. Se reportó una vulnerabilidad de desbordamiento del búfer (corregida y divulgada ... • https://support.lenovo.com/us/en/product_security/lse_bios_notebook • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 5.9EPSS: 74%CPEs: 131EXPL: 5CVE-2017-15361 – HPE Security Bulletin HPESBHF03789 2
https://notcve.org/view.php?id=CVE-2017-15361
16 Oct 2017 — The Infineon RSA library 1.02.013 in Infineon Trusted Platform Module (TPM) firmware, such as versions before 0000000000000422 - 4.34, before 000000000000062b - 6.43, and before 0000000000008521 - 133.33, mishandles RSA key generation, which makes it easier for attackers to defeat various cryptographic protection mechanisms via targeted attacks, aka ROCA. Examples of affected technologies include BitLocker with TPM 1.2, YubiKey 4 (before 4.3.5) PGP key generation, and the Cached User Data encryption feature... • https://github.com/nsacyber/Detect-CVE-2017-15361-TPM •