Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
During an internal product security audit a potential vulnerability due to use of Boot Services in the SmmOEMInt15 SMI handler was discovered in some ThinkPad models could be exploited by an attacker with elevated privileges that could allow for execution of code.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
输入验证不恰当
Vulnerability Title
Lenovo ThinkPad 权限许可和访问控制问题漏洞
Vulnerability Description
Lenovo ThinkPad是中国联想(Lenovo)公司的一个便携式计算机。 Lenovo ThinkPad BIOS 存在权限许可和访问控制问题漏洞,该漏洞源于在 SmmOEMInt15 SMI 处理程序中使用了引导服务。本地攻击者可以绕过已实施的安全限制并以提升的权限执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A