Vulnerability Database

328,409

Total vulnerabilities in the database

CVE-2019-6190

Lenovo was notified of a potential denial of service vulnerability, affecting various versions of BIOS for Lenovo Desktop, Desktop - All in One, and ThinkStation, that could cause PCRs to be cleared intermittently after resuming from sleep (S3) on systems with Intel TXT enabled.

  • Published: Feb 14, 2020
  • Updated: Nov 9, 2025
  • CVE: CVE-2019-6190
  • Severity: Medium
  • Exploit:

CVSS v3:

  • Severity: Medium
  • Score: 5
  • AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H

CVSS v2:

  • Severity: Low
  • Score: 2.1
  • AV:L/AC:L/Au:N/C:N/I:N/A:P

CWEs:

Software From Fixed in
lenovo / thinkcentre_e93_firmware - fbktdba
lenovo / thinkcentre_m6500s_firmware - fbktdba
lenovo / thinkcentre_m6500t_firmware - fbktdba
lenovo / thinkcentre_m73p_firmware - fbktdba
lenovo / thinkcentre_m83_firmware - fbktdba
lenovo / thinkcentre_m8500s_firmware - fbktdba
lenovo / thinkcentre_m8500t_firmware - fbktdba
lenovo / thinkcentre_m93_firmware - fbktdba
lenovo / thinkcentre_m93p_firmware - fbktdba
lenovo / thinkstation_e32_firmware - fbktdba
lenovo / thinkstation_p300_firmware - fbktdba
lenovo / thinkstation_c30_refresh_firmware - 2-27-2020
lenovo / thinkstation_d30_refresh_firmware - 2-27-2020
lenovo / thinkstation_p410_firmware - 2-27-2020
lenovo / thinkstation_p500_firmware - 2-27-2020
lenovo / thinkstation_p510_firmware - 2-27-2020
lenovo / thinkstation_p700_firmware - 2-27-2020
lenovo / thinkstation_p710_firmware - 2-27-2020
lenovo / thinkstation_p720_firmware - 2-27-2020
lenovo / thinkstation_p900_firmware - 2-27-2020
lenovo / thinkstation_p910_firmware - 2-27-2020
lenovo / thinkstation_p920_firmware - 2-27-2020
lenovo / thinkstation_s30_refresh_firmware - 2-27-2020
lenovo / h50-30g_desktop_firmware - fckt97a
lenovo / lenovo_63_desktop_firmware - fckt97a
lenovo / m4500_desktop_firmware - fckt97a
lenovo / m4500_id_desktop_firmware - fckt97a
lenovo / m4550_id_desktop_firmware - fckt97a
lenovo / qitian_4500_desktop_firmware - fckt97a
lenovo / qitian_b4550_desktop_firmware - fckt97a
lenovo / qitian_m4550_desktop_firmware - fckt97a
lenovo / thinkcentre_e73_desktop_firmware - fckt97a
lenovo / thinkcentre_e73s_desktop_firmware - fckt97a
lenovo / thinkcentre_m4500k_desktop_firmware - fckt97a
lenovo / thinkcentre_m4500s_desktop_firmware - fckt97a
lenovo / thinkcentre_m4500t_desktop_firmware - fckt97a
lenovo / thinkcentre_m73_desktop_firmware - fckt97a
lenovo / yangtian_afh81_desktop_firmware - fckt97a
lenovo / yangtian_mc_h81_desktop_firmware - fckt97a
lenovo / yangtian_mf_h81_pci_desktop_firmware - fckt97a
lenovo / yangtian_ms_h81_desktop_firmware - fckt97a
lenovo / yangtian_tc_h81_pci_desktop_firmware - fckt97a
lenovo / yangtian_wcc_h81_pci_desktop_firmware - fckt97a
lenovo / yangtian_wf_h81_pci_desktop_firmware - fckt97a
lenovo / yangtian_ws_h81_desktop_firmware - fckt97a
lenovo / thinkcentre_m9350z_firmware - fekta1a
lenovo / thinkcentre_m93z_firmware - fekta1a
lenovo / thinkcentre_m73_tiny_firmware - fhkt84a
lenovo / thinkcentre_m4500q_firmware - fhkt84a
lenovo / thinkcentre_m9550z_firmware - fukt55a
lenovo / thinkcentre_m9500z_firmware - fukt55a
lenovo / thinkcentre_m900z_firmware - fukt55a
lenovo / thinkcenter_m700z_firmware - fvkt64a
lenovo / thinkcenter_m800z_firmware - fvkt64a
lenovo / thinkcentre_e74z_firmware - fvkt64a
lenovo / thinkcentre_m700z_firmware - fvkt64a
lenovo / thinkcentre_m7300z_firmware - fvkt64a
lenovo / thinkcentre_m800z_firmware - fvkt64a
lenovo / thinkcentre_m8300z_firmware - fvkt64a
lenovo / thinkcentre_m8350z_firmware - fvkt64a
lenovo / thinkcentre_m83z_firmware - fvkt64a
lenovo / ideacentre_700_firmware - fwkta7a
lenovo / thinkcentre_m6600_firmware - fwkta7a
lenovo / thinkcentre_m6600q_firmware - fwkta7a
lenovo / thinkcentre_m6600s_firmware - fwkta7a
lenovo / thinkcentre_m6600t_firmware - fwkta7a
lenovo / thinkcentre_m700q_firmware - fwkta7a
lenovo / thinkcentre_m800_firmware - fwkta7a
lenovo / thinkcentre_m8600s_firmware - fwkta7a
lenovo / thinkcentre_m8600t_firmware - fwkta7a
lenovo / thinkcentre_m900_firmware - fwkta7a
lenovo / yangtian_afq150_firmware - fwkta7a
lenovo / yta8900f_firmware - fwkta7a
lenovo / thinkstation_p310_firmware - fwkta9a
lenovo / qitian_b4650_firmware - m05kt88a
lenovo / qitian_m4600_firmware - m05kt88a
lenovo / qitian_m4650_firmware - m05kt88a
lenovo / thinkcentre_e74_firmware - m05kt88a
lenovo / thinkcentre_e74s_firmware - m05kt88a
lenovo / thinkcentre_m4600s_firmware - m05kt88a
lenovo / thinkcentre_m4600t_firmware - m05kt88a
lenovo / thinkcentre_m700s_firmware - m05kt88a
lenovo / thinkcentre_m700t_firmware - m05kt88a
lenovo / yangtian_afh110_firmware - m05kt88a
lenovo / yangtian_mc_h110_firmware - m05kt88a
lenovo / yangtian_mc_h110_pci_firmware - m05kt88a
lenovo / yangtian_me_h110_firmware - m05kt88a
lenovo / yangtian_mf_h110_pci_firmware - m05kt88a
lenovo / yangtian_tc_h110_pci_firmware - m05kt88a
lenovo / yangtian_wc_h110_pci_firmware - m05kt88a
lenovo / yangtian_we_h110_firmware - m05kt88a
lenovo / yangtian_wf_h110_pci_firmware - m05kt88a
lenovo / thinkcentre_m600_firmware - m00kt63a
lenovo / thinkcentre_x1_aio_firmware - m0hkt44a
lenovo / thinkcentre_m79_firmware - m0lkt27a
lenovo / qitian_b5900_firmware - m0lkt27a
lenovo / yangtian_ytm6900e-00_firmware - m0ukt35a
lenovo / thinkcentre_s510_firmware - m0ukt35a
lenovo / qt_m410_firmware - m16kt61a
lenovo / qt_b415_firmware - m16kt61a
lenovo / qt_m415_firmware - m16kt61a
lenovo / thinkcentre_e75t_firmware - m16kt61a
lenovo / thinkcentre_e75s_firmware - m16kt61a
lenovo / thinkcentre_m710t_firmware - m16kt61a
lenovo / thinkcentre_m710s_firmware - m16kt61a
lenovo / v520s-08ikl_firmware - m16kt61a
lenovo / v520t-15ikl_firmware - m16kt61a
lenovo / v410z_firmware - m17kt44a
lenovo / v310z_firmware - m18kt29a
lenovo / qt_a7400_firmware - m18kt29a
lenovo / thinkcentre_m610_firmware - m1akt47a
lenovo / thinkcentre_m710q_firmware - m1akt47a
lenovo / thinkcentre_m910q_firmware - m1akt47a
lenovo / thinkcentre_m910s_firmware - m1akt47a
lenovo / thinkcentre_m910t_firmware - m1akt47a
lenovo / thinkcentre_m910x_firmware - m1akt47a
lenovo / thinkstation_p318_firmware - m1akt47a
lenovo / thinkstation_p320_tiny_firmware - m1akt47a
lenovo / thinkcentre_m720q_firmware - m1vkt4ba
lenovo / thinkcentre_m720t_firmware - m1vkt4ba
lenovo / thinkcentre_m720s_firmware - m1vkt4ba
lenovo / thinkcentre_m920q_firmware - m1vkt4ba
lenovo / thinkcentre_m920x_firmware - m1vkt4ba
lenovo / thinkcentre_m920t_firmware - m1vkt4ba
lenovo / thinkcentre_m920s_firmware - m1vkt4ba
lenovo / thinkstation_p330_tiny_firmware - m1vkt4ba
lenovo / thinkstation_p330_firmware - m1vkt4ba
lenovo / thinkcentre_m715q_firmware - m11kt49a
lenovo / thinkcentre_m910z_firmware - m1bkt44a
lenovo / ideacentre_310s-08igm_firmware - m1tkt24a
lenovo / lenovo_v330-15igm_firmware - m1tkt24a
lenovo / thinkcentre_m625q_firmware - m1wkt37a
lenovo / thinkcentre_m715q_rr_firmware - m1xkt50a
lenovo / qitian_a815_firmware - m1rkt31a
lenovo / thinkcentre_m820z_firmware - m1nkt47a
lenovo / thinkcentre_m920z_firmware - m1mkt43a
lenovo / thinkcentre_e95z_firmware - m1lkt22a
lenovo / thinkcentre_m818z_firmware - m1ekt18a
lenovo / v510z_firmware - m1dkt25a
lenovo / thinkcentre_m810z_firmware - m1ckt40a
lenovo / v540-24iwl_firmware - m29kt32a
lenovo / thinkcentre_m710e_firmware - m1zkt33a
lenovo / v530-22icb_firmware - m20kt43a
lenovo / v530-24icb_firmware - m20kt43a
lenovo / v530s-07icb_firmware - m22kt42a
lenovo / ideacentre_720-18apr_firmware - m25kt40a
lenovo / thinkcentre_m725s_firmware - m25kt40a
lenovo / thinkcentre_e96z_firmware - m26kt15a
lenovo / thinkcentre_m90n-1_firmware - m2akt19a
lenovo / ideacentre_310s-08asr_firmware - o2hkt63a
lenovo / 510-15ikl_firmware - o2tkt61a
lenovo / 510s-08ikl_firmware - o2tkt61a
lenovo / thinkcentre_m715t_firmware - o2vkt94a
lenovo / thinkcentre_m715s_firmware - o2vkt94a
lenovo / legion_t530-28icb_reflash_firmware - o3lkt23a
lenovo / legion_t530-28icb_firmware - o3lkt23a
lenovo / legion_c530-19icb_firmware - o3lkt23a
lenovo / ideacentre_510-15icb_firmware - o3qkt3ba
lenovo / ideacentre_510a-15icb_firmware - o3qkt3ba
lenovo / ideacentre_720-18icb_firmware - o3qkt3ba
lenovo / legion_c730-19ico_firmware - o3nkt26a
lenovo / legion_t730-28ico_firmware - o3nkt26a
lenovo / aio520-24iku_firmware - o3dkt38a
lenovo / aio520-22iku_firmware - o3dkt38a
lenovo / aio_520-24ast_firmware - o3bkt34a
lenovo / aio520-27ikl_firmware - o3ekt27a
lenovo / a340-22ast_firmware - o4ckt18a
lenovo / legion_t530-28apr_firmware - o4gkt0fa
lenovo / legion_t530-28apr_reflash_firmware - o4gkt0fa
lenovo / thinkstation_p520_firmware - s03kt36a
lenovo / thinkstation_p520c_firmware - s03kt36a
lenovo / thinkstation_p320_firmware - s06kt50a
lenovo / a340-24_iwl_firmware - o46kt31a
lenovo / a340-22_iwl_firmware - o46kt31a
lenovo / a340-22icb_firmware - o44kt26a
lenovo / a340-24icb_firmware - o44kt26a
lenovo / yogo_a940-27icb_firmware - o43kt35a
lenovo / aio520-24arr_firmware - o3zkt36a
lenovo / ideacentre_730s-24ikb_firmware - o3wkt18a
lenovo / legion_y520t_z370_firmware - o3ukt27a
lenovo / aio_330-20igm_firmware - o3skt46a
lenovo / aio_330-20ast_firmware - o3rkt23a

Frequently Asked Questions

A security vulnerability is a weakness in software, hardware, or configuration that can be exploited to compromise confidentiality, integrity, or availability. Many vulnerabilities are tracked as CVEs (Common Vulnerabilities and Exposures), which provide a standardized identifier so teams can coordinate patching, mitigation, and risk assessment across tools and vendors.

CVSS (Common Vulnerability Scoring System) estimates technical severity, but it doesn't automatically equal business risk. Prioritize using context like internet exposure, affected asset criticality, known exploitation (proof-of-concept or in-the-wild), and whether compensating controls exist. A "Medium" CVSS on an exposed, production system can be more urgent than a "Critical" on an isolated, non-production host.

A vulnerability is the underlying weakness. An exploit is the method or code used to take advantage of it. A zero-day is a vulnerability that is unknown to the vendor or has no publicly available fix when attackers begin using it. In practice, risk increases sharply when exploitation becomes reliable or widespread.

Recurring findings usually come from incomplete Asset Discovery, inconsistent patch management, inherited images, and configuration drift. In modern environments, you also need to watch the software supply chain: dependencies, containers, build pipelines, and third-party services can reintroduce the same weakness even after you patch a single host. Unknown or unmanaged assets (often called Shadow IT) are a common reason the same issues resurface.

Use a simple, repeatable triage model: focus first on externally exposed assets, high-value systems (identity, VPN, email, production), vulnerabilities with known exploits, and issues that enable remote code execution or privilege escalation. Then enforce patch SLAs and track progress using consistent metrics so remediation is steady, not reactive.

SynScan combines attack surface monitoring and continuous security auditing to keep your inventory current, flag high-impact vulnerabilities early, and help you turn raw findings into a practical remediation plan.