Vulnerability Lookup

🛡️ CVE-2023-43579

🟡 CVSS 6.7 — Medium ✅ No Known Exploit CWE-120 NVD

6.7

CVSS Score

0 Low4 Medium7 High9 Critical10

Description

A buffer overflow was reported in the SmuV11Dxe driver in some Lenovo Desktop products that may allow a local attacker with elevated privileges to execute arbitrary code.

Details

Severity MEDIUM

CVSS Score 6.7

CVSS Vector CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

CWE CWE-120

Public Exploit ✅ No

Source NVD

Published 2023-11-08

Updated 2026-06-08

Modified 2024-11-21

Fix URL N/A

Affected Packages

Software	From version	Fixed in
ideacentre-3-07ada05-firmware	—	o4fkt39a
ideacentre-3-07imb05-firmware	—	m2vkt21a
ideacentre-5-14acn6-firmware	—	—
ideacentre-5-14iab7-firmware	—	m42kt46a
ideacentre-5-14imb05-firmware	—	o4hkt3ca
ideacentre-5-14iob6-firmware	—	m3gkt3da
ideacentre-5-14irb8-firmware	—	m4ukt36a
ideacentre-aio-3-21itl7-firmware	—	o5akt34a
ideacentre-aio-3-22iap7-firmware	—	o5nkt33a
ideacentre-aio-3-22iil5-firmware	—	o56kt24a
ideacentre-aio-3-22imb05-firmware	—	o4rkt31a
ideacentre-aio-3-22itl6-firmware	—	o5akt34a
ideacentre-aio-3-24alc6-firmware	—	o5bkt25a
ideacentre-aio-3-24iap7-firmware	—	o5nkt33a
ideacentre-aio-3-24iil5-firmware	—	o56kt24a
ideacentre-aio-3-24imb05-firmware	—	o4rkt31a
ideacentre-aio-3-24itl6-firmware	—	o5akt34a
ideacentre-aio-3-27iap7-firmware	—	o5nkt33a
ideacentre-aio-3-27imb05-firmware	—	o4rkt31a
ideacentre-aio-3-27itl6-firmware	—	o5akt34a
ideacentre-aio-5-24iah7-firmware	—	o5rkt41a
ideacentre-aio-5-27iah7-firmware	—	o5rkt41a
ideacentre-c5-14imb05-firmware	—	o4hkt3ca
ideacentre-creator-5-14iob6-firmware	—	m3gkt3da
ideacentre-g5-14amr05-firmware	—	o4zkt2ba
ideacentre-g5-14imb05-firmware	—	o4hkt3ca
ideacentre-gaming-5-14acn6-firmware	—	—
ideacentre-gaming-5-14iob6-firmware	—	m3gkt3da
ideacentre-gaming-5-17acn7-firmware	—	—
ideacentre-gaming-5-17iab7-firmware	—	m42kt46a
ideacentre-mini-5-01iaq7-firmware	—	o53kt10a
ideacentre-mini-5-01imh05-firmware	—	—
ideacentre-t540-15ama-g-firmware	—	—
legion-t5-26iab7-firmware	—	o5lkt2ba
legion-t5-26irb8-firmware	—	o5tkt1ca
legion-t7-34iaz7-firmware	—	o5hkt2ca
legion-t7-34imz5-firmware	—	o5fkt17a
legion-t7-34irz8-firmware	—	o5ukt1fa
loq-17irb8-firmware	—	m4ukt36a
thinkcentre-m625q-firmware	—	—
thinkcentre-m630e-firmware	—	m28kt42a
thinkcentre-m70a-gen-3-firmware	—	—
thinkcentre-m70c-firmware	—	m2vkt21a
thinkcentre-m70q-firmware	—	—
thinkcentre-m70q-gen-2-firmware	—	—
thinkcentre-m70s-firmware	—	m2tkt55a
thinkcentre-m70s-gen-3-firmware	—	m41kt45a
thinkcentre-m70t-firmware	—	m2tkt55a
thinkcentre-m70t-gen-3-firmware	—	m41kt45a
thinkcentre-m75n-firmware	—	m33kt29a
thinkcentre-m75q-gen-2-firmware	—	—
thinkcentre-m75s-gen-2-firmware	—	—
thinkcentre-m75t-gen-2-firmware	—	—
thinkcentre-m80q-firmware	—	—
thinkcentre-m80q-gen-3-firmware	—	—
thinkcentre-m80s-firmware	—	m2tkt55a
thinkcentre-m80s-gen-3-firmware	—	m40kt45a
thinkcentre-m80t-firmware	—	m2tkt55a
thinkcentre-m80t-gen-3-firmware	—	m40kt45a
thinkcentre-m90a-firmware	—	m2rkt57a
thinkcentre-m90a-gen-2-firmware	—	m3lkt2aa
thinkcentre-m90a-gen-3-firmware	—	m4ikt1da
thinkcentre-m90a-pro-gen-3-firmware	—	m4hkt1da
thinkcentre-m90q-gen-2-firmware	—	—
thinkcentre-m90q-gen-3-firmware	—	—
thinkcentre-m90q-tiny-firmware	—	—
thinkcentre-m90s-firmware	—	m2tkt55a
thinkcentre-m90s-gen-3-firmware	—	m40kt45a
thinkcentre-m90t-firmware	—	m2tkt55a
thinkcentre-m90t-gen-3-firmware	—	m40kt45a
thinkcentre-m920z-all-in-one-firmware	—	m1mkt56a
thinkcentre-neo-30a-22-gen-3-firmware	—	o5nkt33a
thinkcentre-neo-30a-22-gen-4-firmware	—	o5nkt33a
thinkcentre-neo-30a-24-gen-3-firmware	—	o5nkt33a
thinkcentre-neo-30a-24-gen-4-firmware	—	o5nkt33a
thinkcentre-neo-30a-27-gen-3-firmware	—	o5nkt33a
thinkcentre-neo-30a-27-gen-4-firmware	—	—
thinkcentre-neo-50a-24-gen-3-firmware	—	o5rkt41a
thinkcentre-neo-50a-24-gen-4-firmware	—	o5xkt18a
thinkcentre-neo-50t-gen-3-firmware	—	m42kt46a
thinkcentre-neo-70t-gen-3-firmware	—	m40kt45a
thinkedge-se30-firmware	—	—
thinkstation-p320-workstation-firmware	—	—
thinkstation-p330-workstation-2nd-gen-firmware	—	m1vkt73a
thinkstation-p330-workstation-firmware	—	m1vkt73a
thinkstation-p340-tiny-workstation-firmware	—	—
thinkstation-p340-workstation-firmware	—	s08kt55a
thinkstation-p348-workstation-firmware	—	—
thinkstation-p350-tiny-workstation-firmware	—	—
thinkstation-p350-workstation-firmware	—	—
thinkstation-p358-workstation-firmware	—	s0hkt23a
thinkstation-p360-tiny-workstation-firmware	—	—
thinkstation-p360-ultra-workstation-firmware	—	—
thinkstation-p360-workstation-firmware	—	s0ekt45a
thinkstation-p520-workstation-firmware	—	—
thinkstation-p520c-workstation-firmware	—	—
thinkstation-p720-workstation-firmware	—	—
thinkstation-p920-workstation-firmware	—	—
v30a-22iml-firmware	—	m37kt31a
v30a-22itl-firmware	—	o5akt34a
v30a-24iml-firmware	—	m37kt31a
v30a-24itl-firmware	—	o5akt34a
v50a-22imb-firmware	—	m36kt32a
v50a-24imb-firmware	—	m36kt32a
v50s-07imb-firmware	—	m2vkt21a
v50t-13imb-firmware	—	o4hkt3ca
v50t-13imh-firmware	—	m4pkt16a
v50t-13iob-firmware	—	m3gkt3da
v55t-gen-2-13acn-firmware	—	o5jkt2ca
yoga-aio-7-27arh6-firmware	—	—
yoga-aio-7-27arh7-firmware	—	—

References

Vendor Advisory https://support.lenovo.com/us/en/product_security/LEN-141775

🔗 NVD 🔗 Mitre

Similar Threats

Free Vulnerability Check

Is your WordPress site affected?

BotEraser helps you identify potentially vulnerable plugins and themes by checking your installation against known CVE records.

Scan My Site Free →

No credit card required · Results in minutes

ⓘ Data Notice: The information presented above has been compiled from publicly available internet sources. Boteraser aggregates this data solely for informational purposes and does not independently classify, evaluate, or endorse any findings about the vulnerabilities listed. The accuracy and completeness of this information is the sole responsibility of the original publishers. Boteraser and its operators accept no liability for any decisions made based on this data.

Is your WordPress site affected?

Company

Resources

Services

Trusted

Subscribe