Security Advisory

CVE-2022-1108

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-04-22 20:30:51

Last updated 2024-08-02 23:55:24

Assigner lenovo

State PUBLISHED

Description

A potential vulnerability due to improper buffer validation in the SMI handler LenovoFlashDeviceInterface in Thinkpad X1 Fold Gen 1 could be exploited by an attacker with local access and elevated privileges to execute arbitrary code.

← Browse all CVEs View on cve.org ↗