cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2023-34419,https://securityvulnerability.io/vulnerability/CVE-2023-34419,Buffer Overflow Vulnerability in SetupUtility Driver for Lenovo Notebooks,"A buffer overflow vulnerability has been discovered in the SetupUtility driver affecting certain Lenovo Notebook models. This flaw may grant an attacker with local access and elevated permissions the ability to execute arbitrary code, potentially compromising the integrity of the system. Users are advised to implement security patches and follow best practices to mitigate risks associated with this vulnerability.",Lenovo,Lenovo Notebook,6.7,MEDIUM,0.0004199999966658652,false,,false,false,false,,,false,false,,2023-08-17T17:15:00.000Z,0
CVE-2023-4028,https://securityvulnerability.io/vulnerability/CVE-2023-4028,Buffer Overflow Flaw in Lenovo Notebook SystemUserMasterHddPwdDxe Driver,"A vulnerability exists in the SystemUserMasterHddPwdDxe driver used in certain Lenovo Notebook products, allowing a local attacker with elevated privileges to exploit a buffer overflow. This security issue could enable the execution of arbitrary code, potentially compromising system integrity and allowing further unauthorized actions.",Lenovo,Lenovo Notebook,6.7,MEDIUM,0.0004199999966658652,false,,false,false,false,,,false,false,,2023-08-17T17:15:00.000Z,0
CVE-2017-3754,https://securityvulnerability.io/vulnerability/CVE-2017-3754,,Some Lenovo brand notebook systems do not have write protections properly configured in the system BIOS. This could enable an attacker with physical or administrative access to a system to be able to flash the BIOS with an arbitrary image and potentially run malicious BIOS code.,Lenovo,Lenovo Notebook BiOS,6.7,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2017-07-17T19:29:00.000Z,0
CVE-2016-8224,https://securityvulnerability.io/vulnerability/CVE-2016-8224,,A vulnerability has been identified in some Lenovo Notebook and ThinkServer systems where an attacker with administrative privileges on a system could install a program that circumvents Intel Management Engine (ME) protections. This could result in a denial of service or privilege escalation attack on the system.,Lenovo,"Lenovo Notebook Models 110-14ibr/110-15ibr, B70-80, E31-80, E40-80, E41-80, E51-80, G40-80, G50-80, G50-80 Touch, Ideapad 300-14ibr/300-15ibr, Ideapad 300-14isk/300-15isk/300-17isk, Ideapad 510s-12isk, K21-80, K41-80, Miix 710-12ikb , Xiaoxin Air 12, Yoga 510-14isk/510-15isk, Yoga 710-11ikb, Yoga 710-11isk, Yoga 900-13isk, Yoga 900s-12isk; Thinkserver Models Thinkserver Ts150, Thinkserver Ts450",4.4,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2016-11-29T20:00:00.000Z,0