cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2021-3897,https://securityvulnerability.io/vulnerability/CVE-2021-3897,Authentication Bypass in Lenovo Fan Power Controller and System Management Module Firmware,"An authentication bypass vulnerability has been identified in the Lenovo Fan Power Controller2 (FPC2) and Lenovo System Management Module (SMM) firmware. This flaw allows unauthenticated attackers to execute arbitrary commands on the affected devices, potentially compromising the system's integrity and security. It is critical for users of these products to apply necessary updates to mitigate risks associated with this vulnerability.",Lenovo,"Fan Power Controller2 (fpc2),Lenovo System Management Module (smm)",9.8,CRITICAL,0.001820000004954636,false,,false,false,false,,,false,false,,2022-04-22T21:10:13.000Z,0
CVE-2021-3849,https://securityvulnerability.io/vulnerability/CVE-2021-3849,Authentication Bypass in Lenovo Fan Power Controller and System Management Module,"An authentication bypass vulnerability has been identified in the web interface of the Lenovo Fan Power Controller 2 (FPC2) and Lenovo System Management Module (SMM) firmware. This flaw potentially allows an unauthenticated attacker to execute arbitrary commands on these systems, leading to unauthorized access and control. Notably, the SMM2 version remains unaffected.",Lenovo,"Fan Power Controller2 (fpc2),Lenovo System Management Module (smm)",9.8,CRITICAL,0.0015999999595806003,false,,false,false,false,,,false,false,,2022-04-22T21:10:11.000Z,0