critical
10
CWE
120 119
Advisory Published
Updated

CVE-2015-5684: Buffer Overflow

First published: Fri Mar 27 2020(Updated: )

MITRE is populating this ID because it was assigned prior to Lenovo becoming a CNA. A buffer overflow vulnerability was reported, (fixed and publicly disclosed in 2015) in the Lenovo Service Engine (LSE), affecting various versions of BIOS for Lenovo Notebooks, that could allow a remote user to execute arbitrary code on the system.

Credit: cve@mitre.org

Affected SoftwareAffected VersionHow to fix
Lenovo B50-10 Firmware<cccn13ww\(v1.02\)
Lenovo B50-10
Lenovo Flex 2 Pro-15 Firmware<a9cn46ww
Lenovo Flex 2 Pro-15
Lenovo Edge 15 Firmware<a9cn46ww
Lenovo Edge 15
Lenovo Edge 15 Firmware<b9cn17ww
Lenovo Flex 2 Pro-15 Firmware<b9cn17ww
Lenovo Flex 3-1470 Firmware<bdcn30ww
Lenovo Flex 3-1470
Lenovo Flex 3-1570 Firmware<bdcn30ww
Lenovo Flex 3-1570
Lenovo Flex 3-1120 Firmware<c0cn25ww
Lenovo Flex 3-1120
Lenovo G40-80 Firmware<b0cn75ww
Lenovo G40-80
Lenovo G50-80 Firmware<b0cn75ww
Lenovo G50-80
Lenovo G50-80 Touch Firmware<b0cn75ww
Lenovo G50-80 Touch
Lenovo G50-80 Touch V3000 Firmware<b0cn75ww
Lenovo G50-80 Touch V3000
Lenovo G40-80m Firmware<cbcn75ww
Lenovo G40-80m
Lenovo G50-80m Firmware<cbcn75ww
Lenovo G50-80m
Lenovo Ideapad 100-14iby Firmware<v1.02_\(cccn13ww\)
Lenovo Ideapad 100-14iby
Lenovo Ideapad 100-15iby Firmware<v1.02_\(cccn13ww\)
Lenovo Ideapad 100-15iby
Lenovo S21e Firmware<c4cn14ww\(v1.04\)
Lenovo S21e
Lenovo S41-70 Firmware<bdcn30ww
Lenovo S41-70
Lenovo U41-70 Firmware<bdcn30ww
Lenovo U41-70
Lenovo S435 Firmware<bbcn15ww\(v1.06\)
Lenovo S435
Lenovo M40-35 Firmware<bbcn15ww\(v1.06\)
Lenovo M40-35
Lenovo U31-70 Firmware<afcn30ww\(v2.02\)
Lenovo U31-70
Lenovo Yoga 3 14 Firmware<bacn33ww
Lenovo Yoga 3 14
Lenovo Yoga 3 11 Firmware<b8cn30ww\(v2.08\)
Lenovo Yoga 3 11
Lenovo Y40-80 Firmware<b5cn36ww\(v2.02\)
Lenovo Y40-80
Lenovo Z41-70 Firmware<c2cn18ww\(v1.04\)
Lenovo Z41-70
Lenovo Z51-70 Firmware<c2cn18ww\(v1.04\)
Lenovo Z51-70
Lenovo Z70-80 Firmware<abcn75ww
Lenovo Z70-80
Lenovo G70-80 Firmware<abcn75ww
Lenovo G70-80

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203