🛡️ CVE-2023-45077
🟡 CVSS 6.7 — Medium ✅ No Known Exploit CWE-125 NVD
6.7
CVSS Score
0 Low4 Medium7 High9 Critical10

Description

A memory leakage vulnerability was reported in the 534D0740 DXE driver that may allow a local attacker with elevated privileges to write to NVRAM variables.

Details

Severity MEDIUM
CVSS Score 6.7
CVSS Vector CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
CWE CWE-125
Public Exploit ✅ No
Source NVD
Published 2023-11-08
Updated 2026-06-08
Modified 2024-11-21
Fix URL N/A

Affected Packages

Software From version Fixed in
ideacentre-3-07ada05-firmware o4fkt39a
ideacentre-3-07imb05-firmware m2vkt21a
ideacentre-5-14iob6-firmware m3gkt3da
ideacentre-c5-14imb05-firmware o4hkt3ca
ideacentre-creator-5-14iob6-firmware m3gkt3da
ideacentre-g5-14amr05-firmware o4zkt2ba
ideacentre-g5-14imb05-firmware o4hkt3ca
ideacentre-gaming-5-14iob6-firmware m3gkt3da
ideacentre-mini-5-01iaq7-firmware o53kt10a
ideacentre-mini-5-01imh05-firmware o4ekt1ba
legion-t7-34imz5-firmware o5fkt17a
thinkcentre-m625q-firmware m1wkt52a
thinkcentre-m630e-firmware
thinkcentre-m70a-firmware m2skt29a
thinkcentre-m70c-firmware m2vkt21a
thinkcentre-m70q-firmware m2wkt5aa
thinkcentre-m70s-firmware m2tkt55a
thinkcentre-m70t-firmware m2tkt55a
thinkcentre-m720q-firmware m1ukt72a
thinkcentre-m720s-firmware m1ukt72a
thinkcentre-m720t-firmware m1ukt72a
thinkcentre-m75n-firmware m33kt27a
thinkcentre-m75q-gen-2-firmware m47kt30a
thinkcentre-m75s-gen-2-firmware
thinkcentre-m75t-gen-2-firmware
thinkcentre-m80q-firmware m2wkt5aa
thinkcentre-m80s-firmware m2tkt55a
thinkcentre-m80t-firmware m2tkt55a
thinkcentre-m820z-all-in-one-firmware m1nkt62a
thinkcentre-m90a-firmware m2rkt57a
thinkcentre-m90q-tiny-firmware m2wkt5aa
thinkcentre-m90s-firmware m2tkt55a
thinkcentre-m90t-firmware m2tkt55a
thinkcentre-m920q-firmware m1ukt72a
thinkcentre-m920s-firmware m1ukt72a
thinkcentre-m920t-firmware m1ukt72a
thinkcentre-m920x-firmware m1ukt72a
thinkcentre-m920z-all-in-one-firmware m1mkt56a
thinkedge-se30-firmware m3fkt2da
thinkstation-p320-workstation-firmware s06kt64a
thinkstation-p330-tiny-workstation-firmware m1ukt72a
thinkstation-p330-workstation-2nd-gen-firmware m1vkt72a
thinkstation-p330-workstation-firmware m1vkt72a
thinkstation-p340-tiny-workstation-firmware m2wkt5aa
thinkstation-p340-workstation-firmware s08kt55a
thinkstation-p348-workstation-firmware m3kkt3ba
thinkstation-p350-workstation-firmware
thinkstation-p360-workstation-firmware s0ekt45a
thinkstation-p520-workstation-firmware
thinkstation-p520c-workstation-firmware
thinkstation-p720-workstation-firmware
thinkstation-p920-workstation-firmware
v30a-22iml-firmware m37kt31a
v30a-24iml-firmware m37kt31a
v50a-22imb-firmware m36kt32a
v50a-24imb-firmware m36kt32a
v50s-07imb-firmware m2vkt21a
v50t-13imb-firmware o4hkt3ca
v50t-13imh-firmware m4pkt13a
v50t-13iob-g2-firmware m3gkt3da
v55t-gen-2-13acn-firmware o5jkt23a

Similar Threats

Site Security Check

Concerned your site may already be targeted?

BotEraser analyzes incoming traffic patterns and helps identify bot behavior consistent with known exploit attempts.

Check My Site Free →

No credit card required  ·  Results in minutes

ⓘ Data Notice: The information presented above has been compiled from publicly available internet sources. Boteraser aggregates this data solely for informational purposes and does not independently classify, evaluate, or endorse any findings about the vulnerabilities listed. The accuracy and completeness of this information is the sole responsibility of the original publishers. Boteraser and its operators accept no liability for any decisions made based on this data.