A potential memory leakage vulnerability was reported in some Lenovo Notebook products that may allow a local attacker with elevated privileges to write to NVRAM variables.

Advisories
Source ID Title
EUVD EUVD EUVD-2023-58185 A potential memory leakage vulnerability was reported in some Lenovo Notebook products that may allow a local attacker with elevated privileges to write to NVRAM variables.
Fixes

Solution

Update system firmware to the version (or newer) indicated for your model in the advisory:  https://support.lenovo.com/us/en/product_security/LEN-155477


Workaround

No workaround given by the vendor.

History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: lenovo

Published:

Updated: 2024-08-02T08:14:24.668Z

Reserved: 2023-11-01T19:35:12.721Z

Link: CVE-2023-5912

cve-icon Vulnrichment

Updated: 2024-08-02T08:14:24.668Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-04-05T21:15:08.210

Modified: 2024-11-21T08:42:45.660

Link: CVE-2023-5912

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2025-07-12T22:09:34Z