Thinkpad 11e firmware

This hub aggregates every CVE we track for Thinkpad 11e firmware, a product in the hardware firmware space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 7 most recently published vulnerabilities affecting Thinkpad 11e firmware.

• CVE-2022-1107During an internal product security audit a potential vulnerability due to use of Boot Services in the SmmOEMInt15 SMI handler was discovered in some ThinkPad models could be exploited by an attack...6.7Apr 22, 2022
• CVE-2020-8323A potential vulnerability in the SMI callback function used in the Legacy SD driver in some Lenovo ThinkPad, ThinkStation, and Lenovo Notebook models may allow arbitrary code execution.6.4Jun 9, 2020
• CVE-2020-8320An internal shell was included in BIOS image in some ThinkPad models that could allow escalation of privilege.6.4Jun 9, 2020
• CVE-2019-6188ThinkPad T460p and T470p BIOS Tamper Mechanism9.8Nov 12, 2019
• CVE-2019-6170A potential vulnerability in the SMI callback function used in the Legacy USB driver using boot services structure in runtime phase in some Lenovo ThinkPad models may allow arbitrary code execution.6.4Nov 12, 2019
• CVE-2019-6172A potential vulnerability in the SMI callback function used in Legacy USB driver using passed parameter without sufficient checking in some Lenovo ThinkPad models may allow arbitrary code execution.6.4Nov 12, 2019
• CVE-2019-10724There is a vulnerability with the Dolby DAX2 API system services in which a low-privileged user can terminate arbitrary processes that are running at a higher privilege. The following are affected ...6.5Aug 28, 2019