Vulnerability Description
A potential vulnerability has been reported in Lenovo Power Management Driver versions prior to 1.67.17.48 leading to a buffer overflow which could cause a denial of service.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Lenovo | Power Management Driver | < 1.67.17.48 |
| Lenovo | Thinkpad 13 Gen 2 | - |
| Lenovo | Thinkpad 25 | - |
| Lenovo | Thinkpad A275 | - |
| Lenovo | Thinkpad A285 | - |
| Lenovo | Thinkpad A475 | - |
| Lenovo | Thinkpad A485 | - |
| Lenovo | Thinkpad E14 | - |
| Lenovo | Thinkpad E15 | - |
| Lenovo | Thinkpad E470 | - |
| Lenovo | Thinkpad E470C | - |
| Lenovo | Thinkpad E475 | - |
| Lenovo | Thinkpad E480 | - |
| Lenovo | Thinkpad E490 | - |
| Lenovo | Thinkpad E495 | - |
| Lenovo | Thinkpad E570 | - |
| Lenovo | Thinkpad E570C | - |
| Lenovo | Thinkpad E575 | - |
| Lenovo | Thinkpad E580 | - |
| Lenovo | Thinkpad E590 | - |
Related Weaknesses (CWE)
References
- http://packetstormsecurity.com/files/155656/Lenovo-Power-Management-Driver-BuffeExploitThird Party Advisory
- https://support.lenovo.com/solutions/LEN-29334MitigationVendor Advisory
- http://packetstormsecurity.com/files/155656/Lenovo-Power-Management-Driver-BuffeExploitThird Party Advisory
- https://support.lenovo.com/solutions/LEN-29334MitigationVendor Advisory
FAQ
What is CVE-2019-6192?
CVE-2019-6192 is a vulnerability with a CVSS score of 4.4 (MEDIUM). A potential vulnerability has been reported in Lenovo Power Management Driver versions prior to 1.67.17.48 leading to a buffer overflow which could cause a denial of service.
How severe is CVE-2019-6192?
CVE-2019-6192 has been rated MEDIUM with a CVSS base score of 4.4/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2019-6192?
Check the references section above for vendor advisories and patch information. Affected products include: Lenovo Power Management Driver, Lenovo Thinkpad 13 Gen 2, Lenovo Thinkpad 25, Lenovo Thinkpad A275, Lenovo Thinkpad A285.