A memory leakage vulnerability was reported in the SWSMI_Shadow DXE driver that may allow a local attacker with elevated privileges to write to NVRAM variables.
Metrics
Affected Vendors & Products
| Vendors | Products |
|---|---|
|
Lenovo
Subscribe
|
Ideacentre 3-07ada05
Subscribe
Ideacentre 3-07ada05 Firmware
Subscribe
Ideacentre 3-07imb05
Subscribe
Ideacentre 3-07imb05 Firmware
Subscribe
Ideacentre 5-14iob6
Subscribe
Ideacentre 5-14iob6 Firmware
Subscribe
Ideacentre C5-14imb05
Subscribe
Ideacentre C5-14imb05 Firmware
Subscribe
Ideacentre Creator 5-14iob6
Subscribe
Ideacentre Creator 5-14iob6 Firmware
Subscribe
Ideacentre G5-14amr05
Subscribe
Ideacentre G5-14amr05 Firmware
Subscribe
Ideacentre G5-14imb05
Subscribe
Ideacentre G5-14imb05 Firmware
Subscribe
Ideacentre Gaming 5-14iob6
Subscribe
Ideacentre Gaming 5-14iob6 Firmware
Subscribe
Ideacentre Mini 5-01imh05
Subscribe
Ideacentre Mini 5-01imh05 Firmware
Subscribe
Ideacentre Mini 5 01iaq7
Subscribe
Ideacentre Mini 5 01iaq7 Firmware
Subscribe
Legion T7-34imz5
Subscribe
Legion T7-34imz5 Firmware
Subscribe
Thinkcentre M625q
Subscribe
Thinkcentre M625q Firmware
Subscribe
Thinkcentre M630e
Subscribe
Thinkcentre M630e Firmware
Subscribe
Thinkcentre M70a
Subscribe
Thinkcentre M70a Firmware
Subscribe
Thinkcentre M70c
Subscribe
Thinkcentre M70c Firmware
Subscribe
Thinkcentre M70q
Subscribe
Thinkcentre M70q Firmware
Subscribe
Thinkcentre M70s
Subscribe
Thinkcentre M70s Firmware
Subscribe
Thinkcentre M70t
Subscribe
Thinkcentre M70t Firmware
Subscribe
Thinkcentre M720q
Subscribe
Thinkcentre M720q Firmware
Subscribe
Thinkcentre M720s
Subscribe
Thinkcentre M720s Firmware
Subscribe
Thinkcentre M720t
Subscribe
Thinkcentre M720t Firmware
Subscribe
Thinkcentre M75n
Subscribe
Thinkcentre M75n Firmware
Subscribe
Thinkcentre M75q Gen 2
Subscribe
Thinkcentre M75q Gen 2 Firmware
Subscribe
Thinkcentre M75s Gen 2
Subscribe
Thinkcentre M75s Gen 2 Firmware
Subscribe
Thinkcentre M75t Gen 2
Subscribe
Thinkcentre M75t Gen 2 Firmware
Subscribe
Thinkcentre M80q
Subscribe
Thinkcentre M80q Firmware
Subscribe
Thinkcentre M80s
Subscribe
Thinkcentre M80s Firmware
Subscribe
Thinkcentre M80t
Subscribe
Thinkcentre M80t Firmware
Subscribe
Thinkcentre M820z All-in-one
Subscribe
Thinkcentre M820z All-in-one Firmware
Subscribe
Thinkcentre M90a
Subscribe
Thinkcentre M90a Firmware
Subscribe
Thinkcentre M90q Tiny
Subscribe
Thinkcentre M90q Tiny Firmware
Subscribe
Thinkcentre M90s
Subscribe
Thinkcentre M90s Firmware
Subscribe
Thinkcentre M90t
Subscribe
Thinkcentre M90t Firmware
Subscribe
Thinkcentre M920q
Subscribe
Thinkcentre M920q Firmware
Subscribe
Thinkcentre M920s
Subscribe
Thinkcentre M920s Firmware
Subscribe
Thinkcentre M920t
Subscribe
Thinkcentre M920t Firmware
Subscribe
Thinkcentre M920x
Subscribe
Thinkcentre M920x Firmware
Subscribe
Thinkcentre M920z All-in-one
Subscribe
Thinkcentre M920z All-in-one Firmware
Subscribe
Thinkedge Se30
Subscribe
Thinkedge Se30 Firmware
Subscribe
Thinkstation P320 Workstation
Subscribe
Thinkstation P320 Workstation Firmware
Subscribe
Thinkstation P330 Tiny Workstation
Subscribe
Thinkstation P330 Tiny Workstation Firmware
Subscribe
Thinkstation P330 Workstation
Subscribe
Thinkstation P330 Workstation 2nd Gen
Subscribe
Thinkstation P330 Workstation 2nd Gen Firmware
Subscribe
Thinkstation P330 Workstation Firmware
Subscribe
Thinkstation P340 Tiny Workstation
Subscribe
Thinkstation P340 Tiny Workstation Firmware
Subscribe
Thinkstation P340 Workstation
Subscribe
Thinkstation P340 Workstation Firmware
Subscribe
Thinkstation P348 Workstation
Subscribe
Thinkstation P348 Workstation Firmware
Subscribe
Thinkstation P350 Workstation
Subscribe
Thinkstation P350 Workstation Firmware
Subscribe
Thinkstation P360 Workstation
Subscribe
Thinkstation P360 Workstation Firmware
Subscribe
Thinkstation P520 Workstation
Subscribe
Thinkstation P520 Workstation Firmware
Subscribe
Thinkstation P520c Workstation
Subscribe
Thinkstation P520c Workstation Firmware
Subscribe
Thinkstation P720 Workstation
Subscribe
Thinkstation P720 Workstation Firmware
Subscribe
Thinkstation P920 Workstation
Subscribe
Thinkstation P920 Workstation Firmware
Subscribe
V30a-22iml
Subscribe
V30a-22iml Firmware
Subscribe
V30a-24iml
Subscribe
V30a-24iml Firmware
Subscribe
V50a-22imb
Subscribe
V50a-22imb Firmware
Subscribe
V50a-24imb
Subscribe
V50a-24imb Firmware
Subscribe
V50s-07imb
Subscribe
V50s-07imb Firmware
Subscribe
V50t-13imb
Subscribe
V50t-13imb Firmware
Subscribe
V50t-13imh
Subscribe
V50t-13imh Firmware
Subscribe
V50t-13iob G2
Subscribe
V50t-13iob G2 Firmware
Subscribe
V55t Gen 2 13acn
Subscribe
V55t Gen 2 13acn Firmware
Subscribe
|
Configuration 1 [-]
| AND |
|
Configuration 2 [-]
| AND |
|
Configuration 3 [-]
| AND |
|
Configuration 4 [-]
| AND |
|
Configuration 5 [-]
| AND |
|
Configuration 6 [-]
| AND |
|
Configuration 7 [-]
| AND |
|
Configuration 8 [-]
| AND |
|
Configuration 9 [-]
| AND |
|
Configuration 10 [-]
| AND |
|
Configuration 11 [-]
| AND |
|
Configuration 12 [-]
| AND |
|
Configuration 13 [-]
| AND |
|
Configuration 14 [-]
| AND |
|
Configuration 15 [-]
| AND |
|
Configuration 16 [-]
| AND |
|
Configuration 17 [-]
| AND |
|
Configuration 18 [-]
| AND |
|
Configuration 19 [-]
| AND |
|
Configuration 20 [-]
| AND |
|
Configuration 21 [-]
| AND |
|
Configuration 22 [-]
| AND |
|
Configuration 23 [-]
| AND |
|
Configuration 24 [-]
| AND |
|
Configuration 25 [-]
| AND |
|
Configuration 26 [-]
| AND |
|
Configuration 27 [-]
| AND |
|
Configuration 28 [-]
| AND |
|
Configuration 29 [-]
| AND |
|
Configuration 30 [-]
| AND |
|
Configuration 31 [-]
| AND |
|
Configuration 32 [-]
| AND |
|
Configuration 33 [-]
| AND |
|
Configuration 34 [-]
| AND |
|
Configuration 35 [-]
| AND |
|
Configuration 36 [-]
| AND |
|
Configuration 37 [-]
| AND |
|
Configuration 38 [-]
| AND |
|
Configuration 39 [-]
| AND |
|
Configuration 40 [-]
| AND |
|
Configuration 41 [-]
| AND |
|
Configuration 42 [-]
| AND |
|
Configuration 43 [-]
| AND |
|
Configuration 44 [-]
| AND |
|
Configuration 45 [-]
| AND |
|
Configuration 46 [-]
| AND |
|
Configuration 47 [-]
| AND |
|
Configuration 48 [-]
| AND |
|
Configuration 49 [-]
| AND |
|
Configuration 50 [-]
| AND |
|
Configuration 51 [-]
| AND |
|
Configuration 52 [-]
| AND |
|
Configuration 53 [-]
| AND |
|
Configuration 54 [-]
| AND |
|
Configuration 55 [-]
| AND |
|
Configuration 56 [-]
| AND |
|
Configuration 57 [-]
| AND |
|
Configuration 58 [-]
| AND |
|
Configuration 59 [-]
| AND |
|
Configuration 60 [-]
| AND |
|
Configuration 61 [-]
| AND |
|
Configuration 62 [-]
| AND |
|
Configuration 63 [-]
| AND |
|
Configuration 64 [-]
| AND |
|
No data.
No data.
Advisories
| Source | ID | Title |
|---|---|---|
 EUVD |
EUVD-2023-49396 | A memory leakage vulnerability was reported in the SWSMI_Shadow DXE driver that may allow a local attacker with elevated privileges to write to NVRAM variables. |
Fixes
Solution
Update system firmware to the version (or newer) indicated for your model in the advisory: https://support.lenovo.com/us/en/product_security/LEN-141775
Workaround
No workaround given by the vendor.
References
| Link | Providers |
|---|---|
| https://support.lenovo.com/us/en/product_security/LEN-141775 |
|
History
No history.
Projects
Sign in to view the affected projects.
MITRE
Status: PUBLISHED
Assigner: lenovo
Published:
Updated: 2024-09-04T17:58:47.396Z
Reserved: 2023-10-03T17:36:49.034Z
Link: CVE-2023-45075
Vulnrichment
Updated: 2024-08-02T20:14:19.819Z
NVD
Status : Modified
Published: 2023-11-08T23:15:10.900
Modified: 2024-11-21T08:26:20.410
Link: CVE-2023-45075
Redhat
No data.
OpenCVE Enrichment
No data.
Weaknesses