Thinkcentre e75s firmware

This hub aggregates every CVE we track for Thinkcentre e75s firmware, a product in the hardware firmware space. Use it to gauge the current risk picture and drill into individual advisories.

Hardware Firmware

CVEs tracked

Critical

High

In CISA KEV

Severity distribution

MEDIUM6LOW1HIGH1CRITICAL1

Monthly trend

2024-072026-06

Latest CVEs

See all →

The 9 most recently published vulnerabilities affecting Thinkcentre e75s firmware.

CVE-2022-40137A buffer overflow in the WMI SMI Handler in some Lenovo models may allow an attacker with local access and elevated privileges to execute arbitrary code.6.7Jan 30, 2023
CVE-2022-40134An information leak vulnerability in the SMI Set BIOS Password SMI Handler in some Lenovo models may allow an attacker with local access and elevated privileges to read SMM memory.4.4Jan 30, 2023
CVE-2019-6190Lenovo was notified of a potential denial of service vulnerability, affecting various versions of BIOS for Lenovo Desktop, Desktop - All in One, and ThinkStation, that could cause PCRs to be cleare...5.0Feb 14, 2020
CVE-2019-6188ThinkPad T460p and T470p BIOS Tamper Mechanism9.8Nov 12, 2019
CVE-2019-6170A potential vulnerability in the SMI callback function used in the Legacy USB driver using boot services structure in runtime phase in some Lenovo ThinkPad models may allow arbitrary code execution.6.4Nov 12, 2019
CVE-2019-6172A potential vulnerability in the SMI callback function used in Legacy USB driver using passed parameter without sufficient checking in some Lenovo ThinkPad models may allow arbitrary code execution.6.4Nov 12, 2019
CVE-2019-6156In Lenovo systems, SMM BIOS Write Protection is used to prevent writes to SPI Flash. While this provides sufficient protection, an additional layer of protection is provided by SPI Protected Range ...3.3Apr 10, 2019
CVE-2016-1350Cisco IOS 15.3 and 15.4, Cisco IOS XE 3.8 through 3.11, and Cisco Unified Communications Manager allow remote attackers to cause a denial of service (device reload) via malformed SIP messages, aka ...7.5Mar 26, 2016
CVE-2016-1344The IKEv2 implementation in Cisco IOS 15.0 through 15.6 and IOS XE 3.3 through 3.17 allows remote attackers to cause a denial of service (device reload) via fragmented packets, aka Bug ID CSCux38417.5.9Mar 26, 2016

Product normalization is registry-driven with AI assist and human review. How it works