Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up

CVE-2024-45105

MEDIUM
Published 2024-09-13T17:29:08.267Z
Actions:

Expert Analysis

Professional remediation guidance

Get tailored security recommendations from our analyst team for CVE-2024-45105. We'll provide specific mitigation strategies based on your environment and risk profile.

CVSS Score

V3.1
6.7
/10
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Base Score Metrics
Exploitability: N/A Impact: N/A

EPSS Score

v2025.03.14
0.000
probability
of exploitation in the wild

There is a 0.0% chance that this vulnerability will be exploited in the wild within the next 30 days.

Updated: 2025-06-25
Exploit Probability
Percentile: 0.078
Higher than 7.8% of all CVEs

Attack Vector Metrics

Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED

Impact Metrics

Confidentiality
HIGH
Integrity
HIGH
Availability
HIGH

Description

An internal product security audit discovered a UEFI SMM (System Management Mode) callout vulnerability in some ThinkSystem servers that could allow a local attacker with elevated privileges to execute arbitrary code.

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

Affected Products

Lenovo

HX5530 Appliance (ThinkAgile) BIOS

Affected Versions:

0
Lenovo

HX645 V3 Integrated System (ThinkAgile) BIOS

Affected Versions:

0
Lenovo

HX665 V3 Certified Node (ThinkAgile) BIOS

Affected Versions:

0
Lenovo

ST250 V3 (ThinkSystem) BIOS

Affected Versions:

0
Lenovo

VX3331 Certified Node (ThinkAgile) BIOS

Affected Versions:

0
Lenovo

HX1331 Certified Node (ThinkAgile) BIOS

Affected Versions:

0
Lenovo

HX2330 Appliance (ThinkAgile) BIOS

Affected Versions:

0
Lenovo

HX2331 Certified Node (ThinkAgile) BIOS

Affected Versions:

0
Lenovo

HX3330 Appliance (ThinkAgile) BIOS

Affected Versions:

0
Lenovo

HX3331 Certified Node (ThinkAgile) BIOS

Affected Versions:

0
Lenovo

HX3331 Node SAP HANA (ThinkAgile) BIOS

Affected Versions:

0
Lenovo

HX3375 Appliance (ThinkAgile) BIOS

Affected Versions:

0
Lenovo

HX3376 Certified Node (ThinkAgile) BIOS

Affected Versions:

0
Lenovo

HX5531 Certified Node (ThinkAgile) BIOS

Affected Versions:

0
Lenovo

HX630 V3 Certified Node (ThinkAgile) BIOS

Affected Versions:

0
Lenovo

HX630 V3 Integrated System (ThinkAgile) BIOS

Affected Versions:

0
Lenovo

HX645 V3 Certified Node (ThinkAgile) BIOS

Affected Versions:

0
Lenovo

HX650 V3 Certified Node (ThinkAgile) BIOS

Affected Versions:

0
Lenovo

HX650 V3 Integrated System (ThinkAgile) BIOS

Affected Versions:

0
Lenovo

HX665 V3 Integrated System (ThinkAgile) BIOS

Affected Versions:

0
Lenovo

HX665 V3 Storage Certified Node (ThinkAgile) BIOS

Affected Versions:

0
Lenovo

HX665 V3 Storage Integrated Node (ThinkAgile) BIOS

Affected Versions:

0
Lenovo

HX7530 Appl for SAP HANA (ThinkAgile) BIOS

Affected Versions:

0
Lenovo

HX7531 Certified Node (ThinkAgile) BIOS

Affected Versions:

0
Lenovo

HX7531 Node SAP HANA (ThinkAgile) BIOS

Affected Versions:

0
Lenovo

MX3330-F All-flash Appliance (ThinkAgile) BIOS

Affected Versions:

0
Lenovo

MX3330-H Hybrid Appliance (ThinkAgile) BIOS

Affected Versions:

0
Lenovo

MX3331-F All-flash Certified node (ThinkAgile) BIOS

Affected Versions:

0
Lenovo

MX3331-H Hybrid Certified node (ThinkAgile) BIOS

Affected Versions:

0
Lenovo

MX3530 F All flash Appliance (ThinkAgile) BIOS

Affected Versions:

0
Lenovo

MX3530-H Hybrid Appliance (ThinkAgile) BIOS

Affected Versions:

0
Lenovo

MX3531 H Hybrid Certified node (ThinkAgile) BIOS

Affected Versions:

0
Lenovo

MX3531-F All-flash Certified node (ThinkAgile) BIOS

Affected Versions:

0
Lenovo

MX630 V3 Certified Node (ThinkAgile) BIOS

Affected Versions:

0
Lenovo

MX630 V3 Integrated System (ThinkAgile) BIOS

Affected Versions:

0
Lenovo

MX650 V3 Certified Node (ThinkAgile) BIOS

Affected Versions:

0
Lenovo

MX650 v3 Integrated System (ThinkAgile) BIOS

Affected Versions:

0
Lenovo

SD530 V3 (ThinkSystem) BIOS

Affected Versions:

0
Lenovo

SD550 V3 (ThinkSystem) BIOS

Affected Versions:

0
Lenovo

SD630 V2 (ThinkSystem) BIOS

Affected Versions:

0
Lenovo

SD650 V2 (ThinkSystem) BIOS

Affected Versions:

0
Lenovo

SD650 V3 (ThinkSystem) BIOS

Affected Versions:

0
Lenovo

SD650-N V2 (ThinkSystem) BIOS

Affected Versions:

0
Lenovo

SD665 V3 (ThinkSystem) BIOS

Affected Versions:

0
Lenovo

SE350 V2 (ThinkEdge) BIOS

Affected Versions:

0
Lenovo

SE360 V2 (ThinkEdge) BIOS

Affected Versions:

0
Lenovo

SE450 (ThinkEdge) BIOS

Affected Versions:

0
Lenovo

SE455 V3 (ThinkEdge) BIOS

Affected Versions:

0
Lenovo

SN550 V2 (ThinkSystem) BIOS

Affected Versions:

0
Lenovo

SR250 V2 (ThinkSystem) BIOS

Affected Versions:

0
Lenovo

SR250 V3 (ThinkSystem) BIOS

Affected Versions:

0
Lenovo

SR258 V2 (ThinkSystem) BIOS

Affected Versions:

0
Lenovo

SR258 V3 (ThinkSystem) BIOS

Affected Versions:

0
Lenovo

SR630 V2 (ThinkSystem) BIOS

Affected Versions:

0
Lenovo

SR630 V3 (ThinkSystem) BIOS

Affected Versions:

0
Lenovo

SR635 V3 (ThinkSystem) BIOS

Affected Versions:

0
Lenovo

SR645 (ThinkSystem) BIOS

Affected Versions:

0
Lenovo

SR645 V3 (ThinkSystem) BIOS

Affected Versions:

0
Lenovo

SR650 V2 (ThinkSystem) BIOS

Affected Versions:

0
Lenovo

SR650 V3 (ThinkSystem) BIOS

Affected Versions:

0
Lenovo

SR655 V3 (ThinkSystem) BIOS

Affected Versions:

0
Lenovo

SR665 (ThinkSystem) BIOS

Affected Versions:

0
Lenovo

SR665 V3 (ThinkSystem) BIOS

Affected Versions:

0
Lenovo

SR670 V2 (ThinkSystem) BIOS

Affected Versions:

0
Lenovo

SR675 V3 (ThinkSystem) BIOS

Affected Versions:

0
Lenovo

SR850 V2 (ThinkSystem) BIOS

Affected Versions:

0
Lenovo

SR850 V3 (ThinkSystem) BIOS

Affected Versions:

0
Lenovo

SR860 V2 (ThinkSystem) BIOS

Affected Versions:

0
Lenovo

SR860 V3 (ThinkSystem) BIOS

Affected Versions:

0
Lenovo

SR950 V3 (ThinkSystem) BIOS

Affected Versions:

0
Lenovo

ST250 V2 (ThinkSystem) BIOS

Affected Versions:

0
Lenovo

ST258 V2 (ThinkSystem) BIOS

Affected Versions:

0
Lenovo

ST258 V3 (ThinkSystem) BIOS

Affected Versions:

0
Lenovo

ST650 V2 (ThinkSystem) BIOS

Affected Versions:

0
Lenovo

ST650 V3 (ThinkSystem) BIOS

Affected Versions:

0
Lenovo

ST658 V2 (ThinkSystem) BIOS

Affected Versions:

0
Lenovo

ST658 V3 (ThinkSystem) BIOS

Affected Versions:

0
Lenovo

VX2330 Appliance (ThinkAgile) BIOS

Affected Versions:

0
Lenovo

VX3330 Appliance (ThinkAgile) BIOS

Affected Versions:

0
Lenovo

VX3530-G Appliance (ThinkAgile) BIOS

Affected Versions:

0
Lenovo

VX5530 Appliance (ThinkAgile) BIOS

Affected Versions:

0
Lenovo

VX630 V3 Certified Node (ThinkAgile) BIOS

Affected Versions:

0
Lenovo

VX635 V3 Certified Node (ThinkAgile) BIOS

Affected Versions:

0
Lenovo

VX635 V3 Integrated System (ThinkAgile) BIOS

Affected Versions:

0
Lenovo

VX645 V3 Certified Node (ThinkAgile) BIOS

Affected Versions:

0
Lenovo

VX645 V3 Integrated System (ThinkAgile) BIOS

Affected Versions:

0
Lenovo

VX650 V3 Certified Node (ThinkAgile) BIOS

Affected Versions:

0
Lenovo

VX650 V3 DPU Certified Node (ThinkAgile) BIOS

Affected Versions:

0
Lenovo

VX650 V3 DPU Integrated System (ThinkAgile) BIOS

Affected Versions:

0
Lenovo

VX650 V3 DPU SAP HANA Certified Node (ThinkAgile) BIOS

Affected Versions:

0
Lenovo

VX650 V3 Integrated System (ThinkAgile) BIOS

Affected Versions:

0
Lenovo

VX650 V3 SAP HANA Certified Node (ThinkAgile) BIOS

Affected Versions:

0
Lenovo

VX655 V3 Certified Node (ThinkAgile) BIOS

Affected Versions:

0
Lenovo

VX655 V3 Integrated System (ThinkAgile) BIOS

Affected Versions:

0
Lenovo

VX665 V3 Certified Node (ThinkAgile) BIOS

Affected Versions:

0
Lenovo

VX665 V3 Integrated System (ThinkAgile) BIOS

Affected Versions:

0
Lenovo

VX7330 Appliance (Thinkagile) BIOS

Affected Versions:

0
Lenovo

VX7530 Appliance (ThinkAgile) BIOS

Affected Versions:

0
Lenovo

VX7531 Certified Node (ThinkAgile) BIOS

Affected Versions:

0
lenovo

thinkagile_hx5530_firmware

Affected Versions:

0
lenovo

thinkedge_se450__firmware

Affected Versions:

0
lenovo

thinkedge_se350_v2_firmware

Affected Versions:

0
lenovo

thinksystem_st250_v3_firmware

Affected Versions:

0
lenovo

thinkagile_hx3375_firmware

Affected Versions:

0
lenovo

thinksystem_sr950_v3_firmware

Affected Versions:

0
lenovo

thinkagile_hx650_v3_firmware

Affected Versions:

0
lenovo

thinksystem_sd530_v3_firmware

Affected Versions:

0
lenovo

thinkagile_hx645_v3_integrated_system_firmware

Affected Versions:

0
lenovo

thinksystem_sr850_v2_firmware

Affected Versions:

0
lenovo

thinkedge_se455_v3_firmware

Affected Versions:

0
lenovo

thinksystem_sd665_v3_firmware

Affected Versions:

0
lenovo

thinksystem_sr850_v3_firmware

Affected Versions:

0
lenovo

thinksystem_sr250_v2_firmware

Affected Versions:

0
lenovo

thinksystem_sd630_v2_firmware

Affected Versions:

0
lenovo

thinksystem_sd650_v3_firmware

Affected Versions:

0

GitHub Security Advisories

Community-driven vulnerability intelligence from GitHub

⚠ Unreviewed MODERATE

GHSA-x9q5-m7gx-rf9w

Advisory Details

An internal product security audit discovered a UEFI SMM (System Management Mode) callout vulnerability in some ThinkSystem servers that could allow a local attacker with elevated privileges to execute arbitrary code.

CVSS Scoring

CVSS Score

5.0

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2024-45105
WEB https://support.lenovo.com/us/en/product_security/LEN-165524

Advisory provided by GitHub Security Advisory Database. Published: September 13, 2024, Modified: September 13, 2024

References

https://support.lenovo.com/us/en/product_security/LEN-165524
Published: 2024-09-13T17:29:08.267Z
Last Modified: 2024-09-16T17:38:38.871Z
Copied to clipboard!