vulnerability
Ubuntu: (CVE-2024-26836): linux-raspi-realtime vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:L/AC:L/Au:S/C:C/I:C/A:C) | Apr 17, 2024 | Feb 11, 2025 | May 22, 2025 |
Severity
7
CVSS
(AV:L/AC:L/Au:S/C:C/I:C/A:C)
Published
Apr 17, 2024
Added
Feb 11, 2025
Modified
May 22, 2025
Description
In the Linux kernel, the following vulnerability has been resolved:
platform/x86: think-lmi: Fix password opcode ordering for workstations
The Lenovo workstations require the password opcode to be run before
the attribute value is changed (if Admin password is enabled).
Tested on some Thinkpads to confirm they are OK with this order too.
Solution
ubuntu-upgrade-linux-raspi-realtime
References
- CVE-2024-26836
- https://attackerkb.com/topics/CVE-2024-26836
- URL-https://git.kernel.org/linus/6f7d0f5fd8e440c3446560100ac4ff9a55eec340
- URL-https://git.kernel.org/stable/c/2bfbe1e0aed00ba51d58573c79452fada3f62ed4
- URL-https://git.kernel.org/stable/c/6f7d0f5fd8e440c3446560100ac4ff9a55eec340
- URL-https://www.cve.org/CVERecord?id=CVE-2024-26836
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.