CVE-2023-5912

Name of the Vulnerable Software and Affected Versions Lenovo Notebook products (affected versions not specified)

Description A potential memory leakage vulnerability was reported in some Lenovo Notebook products. This issue may allow a local attacker with elevated privileges to write to NVRAM variables. The vulnerability is related to the System Management Mode (SMM) of the Lenovo Notebook products' firmware and is associated with insufficient input validation, which could allow an attacker to elevate their privileges and execute arbitrary code.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.