cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2023-2992,https://securityvulnerability.io/vulnerability/CVE-2023-2992,Denial of Service Vulnerability in Lenovo SMM and FPC Management Web Server,"An unauthenticated denial of service vulnerability has been identified in Lenovo's SMM v1, SMM v2, and FPC management web servers. This vulnerability can be exploited under specific crafted conditions, potentially disrupting access to the management functionality. To regain access, a reboot of the SMM or FPC server is required. Organizations should take precautionary steps to mitigate the risks associated with this vulnerability.",Lenovo,"System Management Module (smm),Fan Power Controller (fpc)",7.5,HIGH,0.0008999999845400453,false,,false,false,false,,,false,false,,2023-06-26T20:15:00.000Z,0
CVE-2023-2993,https://securityvulnerability.io/vulnerability/CVE-2023-2993,API Command Execution Vulnerability in Lenovo's SMM and FPC Products,"An authenticated user with limited privileges may exploit a security flaw within Lenovo's SMM v1, SMM v2, and FPC products. By crafting malicious web management server API calls, the user can execute commands that they would typically be prevented from performing due to their restricted access level. This vulnerability underscores the importance of reviewing user permissions and securing API endpoints to prevent unauthorized command execution.",Lenovo,"System Management Module (smm),Fan Power Controller (fpc)",5.4,MEDIUM,0.0005300000193528831,false,,false,false,false,,,false,false,,2023-06-26T20:15:00.000Z,0