CVE-2025-4421 | THREATINT

Description

The vulnerability was identified in the code developed specifically for Lenovo. Please visit "Lenovo Product Security Advisories and Announcements" webpage for more information about the vulnerability. https://support.lenovo.com/us/en/product_security/home

PUBLISHED Reserved 2025-05-08 | Published 2025-07-30 | Updated 2025-08-14 | Assigner Insyde

HIGH: 8.2CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

Problem types

CWE-787 Out-of-bounds Write

Product status

Default status

unknown

Feature developed for Lenovo (custom) before L05.05.40.011803.172079

affected

Credits

BINARLY REsearch team reporter

References

www.insyde.com/security-pledge/sa-2025007/

support.lenovo.com/us/en/product_security/home

cve.org (CVE-2025-4421)

nvd.nist.gov (CVE-2025-4421)

Download JSON