CVE-2024-26836
- Source
- https://cve.org/CVERecord?id=CVE-2024-26836
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-26836.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2024-26836
- Downstream
- Related
- Published
- 2024-04-17T10:10:03.539Z
- Modified
- 2026-05-15T11:53:42.151558666Z
- Summary
- platform/x86: think-lmi: Fix password opcode ordering for workstations
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
platform/x86: think-lmi: Fix password opcode ordering for workstations
The Lenovo workstations require the password opcode to be run before the attribute value is changed (if Admin password is enabled).
Tested on some Thinkpads to confirm they are OK with this order too.
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/26xxx/CVE-2024-26836.json", "cna_assigner": "Linux" }- References
-
- https://git.kernel.org/stable/c/2bfbe1e0aed00ba51d58573c79452fada3f62ed4
- https://git.kernel.org/stable/c/2deb10a99671afda30f834e95e5b992a805bba6a
- https://git.kernel.org/stable/c/6f7d0f5fd8e440c3446560100ac4ff9a55eec340
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/26xxx/CVE-2024-26836.json
- https://nvd.nist.gov/vuln/detail/CVE-2024-26836
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git