2 results (0.002 seconds)
CVSS: 8.8EPSS: 0%CPEs: 256EXPL: 0
CVE-2023-4607
https://notcve.org/view.php?id=CVE-2023-4607
An authenticated XCC user can change permissions for any user through a crafted API command. Un usuario XCC autenticado puede cambiar los permisos de cualquier usuario mediante un comando API manipulado. • https://support.lenovo.com/us/en/product_security/LEN-140960 • CWE-269: Improper Privilege Management •
CVSS: 6.7EPSS: 0%CPEs: 598EXPL: 0
CVE-2022-40137
https://notcve.org/view.php?id=CVE-2022-40137
A buffer overflow in the WMI SMI Handler in some Lenovo models may allow an attacker with local access and elevated privileges to execute arbitrary code. • https://support.lenovo.com/us/en/product_security/LEN-94953 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •