CVE-2023-43571
08.11.2023, 23:15
A buffer overflow was reported in the BiosExtensionLoader module in some Lenovo Desktop products that may allow a local attacker with elevated privileges to execute arbitrary code.
| Vendor | Product | Version |
|---|---|---|
| lenovo | ideacentre_5-14acn6_firmware | - |
| lenovo | ideacentre_t540-15ama_g_firmware | - |
| lenovo | thinkcentre_m90q_tiny_firmware | - |
| lenovo | thinkcentre_m90q_gen_3_firmware | - |
| lenovo | thinkcentre_m90q_gen_2_firmware | - |
| lenovo | thinkcentre_m80q_gen_3_firmware | - |
| lenovo | thinkcentre_m80q_firmware | - |
| lenovo | thinkcentre_m75t_gen_2_firmware | - |
| lenovo | thinkcentre_m75s_gen_2_firmware | - |
| lenovo | thinkcentre_m75q_gen_2_firmware | - |
| lenovo | thinkcentre_m70q_gen_2_firmware | - |
| lenovo | thinkcentre_m70q_firmware | - |
| lenovo | thinkcentre_m70a_gen_3_firmware | - |
| lenovo | thinkcentre_m625q_firmware | - |
| lenovo | ideacentre_mini_5-01imh05_firmware | - |
| lenovo | ideacentre_gaming_5-14acn6_firmware | - |
| lenovo | ideacentre_gaming_5_17acn7_firmware | - |
| lenovo | yoga_aio_7_27arh7_firmware | - |
| lenovo | yoga_aio_7-27arh6_firmware | - |
| lenovo | thinkedge_se30_firmware | - |
| lenovo | thinkstation_p920_workstation_firmware | - |
| lenovo | thinkstation_p720_workstation_firmware | - |
| lenovo | thinkstation_p520c_workstation_firmware | - |
| lenovo | thinkstation_p520_workstation_firmware | - |
| lenovo | thinkstation_p360_workstation_firmware | - |
| lenovo | thinkstation_p360_ultra_workstation_firmware | - |
| lenovo | thinkstation_p360_tiny_workstation_firmware | - |
| lenovo | thinkstation_p350_workstation_firmware | - |
| lenovo | thinkstation_p350_tiny_workstation_firmware | - |
| lenovo | thinkstation_p348_workstation_firmware | - |
| lenovo | thinkstation_p340_tiny_workstation_firmware | - |
| lenovo | thinkstation_p320_workstation_firmware | - |
𝑥
= Vulnerable software versions