MEDIUM🇬🇧 English

CVE-2021-3719

CVSS 6.7v3.1pub. 2021-11-12upd. 2024-11-21

A potential vulnerability in the SMI callback function that saves and restore boot script tables used for resuming from sleep state in some ThinkCentre and ThinkStation models may allow an attacker with local access and elevated privileges to execute arbitrary code.

oryginał EN
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
  • Lenovo Thinkcentre E93

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Thinkcentre E93 Firmware

    OS
    Lenovo
    < fbktdfa
  • Lenovo Thinkcentre M4500q

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Thinkcentre M4500q Firmware

    OS
    Lenovo
    < fhkt86a
  • Lenovo Thinkcentre M600

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Thinkcentre M600 Firmware

    OS
    Lenovo
    < m00kt65a
  • Lenovo Thinkcentre M6500t\/s

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Thinkcentre M6500t\/s Firmware

    OS
    Lenovo
    < fbktdfa
  • Lenovo Thinkcentre M700 Tiny

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Thinkcentre M700 Tiny Firmware

    OS
    Lenovo
    < fwktb9a
  • Lenovo Thinkcentre M73

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Thinkcentre M73 Firmware

    OS
    Lenovo
    < fhkt86a
  • Lenovo Thinkcentre M73p

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Thinkcentre M73p Firmware

    OS
    Lenovo
    < fbktdfa
  • Lenovo Thinkcentre M800

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Thinkcentre M800 Firmware

    OS
    Lenovo
    < fwktb9a
  • Lenovo Thinkcentre M818z

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Thinkcentre M818z Firmware

    OS
    Lenovo
    < m1ekt23a
  • Lenovo Thinkcentre M83

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Thinkcentre M83 Firmware

    OS
    Lenovo
    < fbktdfa
  • Lenovo Thinkcentre M8500t\/s

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Thinkcentre M8500t\/s Firmware

    OS
    Lenovo
    < fbktdfa
  • Lenovo Thinkcentre M900

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Thinkcentre M900 Firmware

    OS
    Lenovo
    < fwktb9a
  • Lenovo Thinkcentre M900x

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Thinkcentre M900x Firmware

    OS
    Lenovo
    < fwktb9a
  • Lenovo Thinkcentre M93

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Thinkcentre M93 Firmware

    OS
    Lenovo
    < fbktdfa
  • Lenovo Thinkcentre M93p

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Thinkcentre M93p Firmware

    OS
    Lenovo
    < fbktdfa
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
RCE
CWE
Referencje

Powiązane podatności

CVE-2019-6188CRITICAL9.8ten sam produkt

The BIOS tamper detection mechanism was not triggered in Lenovo ThinkPad T460p, BIOS versions up to R07ET90W, ...

CVE-2019-19705HIGH7.8ten sam produkt

Realtek Audio Drivers for Windows, as used on the Lenovo ThinkPad X1 Carbon 20A7, 20A8, 20BS, and 20BT before ...

CVE-2016-5247HIGH7.8ten sam produkt

The BIOS for Lenovo ThinkCentre E93, M6500t/s, M6600, M6600q, M6600t/s, M73p, M800, M83, M8500t/s, M8600t/s, M...

CVE-2022-48181MEDIUM6.7ten sam produkt

An ErrorMessage driver stack-based buffer overflow vulnerability in BIOS of some ThinkPad models could allow a...

CVE-2022-40134MEDIUM4.4ten sam produkt

An information leak vulnerability in the SMI Set BIOS Password SMI Handler in some Lenovo models may allow an ...

CVE-2021-3719 — MEDIUM 6.7 | CVEbaza.pl