Published: 12/11/2021 Updated: 19/11/2021

CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9

CVSS v3 Base Score: 6.7 | Impact Score: 5.9 | Exploitability Score: 0.8

VMScore: 641

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

A potential vulnerability in the SMI callback function that saves and restore boot script tables used for resuming from sleep state in some ThinkCentre and ThinkStation models may allow an attacker with local access and elevated privileges to execute arbitrary code.

Vulnerable Product	Search on Vulmon	Subscribe to Product
lenovo thinkcentre_e93_firmware
lenovo thinkcentre_m600_firmware
lenovo thinkcentre_m700_tiny_firmware
lenovo thinkcentre_m73_firmware
lenovo thinkcentre_m73p_firmware
lenovo thinkcentre_m800_firmware
lenovo thinkcentre_m818z_firmware
lenovo thinkcentre_m83_firmware
lenovo thinkcentre_m900_firmware
lenovo thinkcentre_m900x_firmware
lenovo thinkcentre_m93_firmware
lenovo thinkcentre_m93p_firmware
lenovo thinkcentre_m4500q_firmware
lenovo thinkcentre_m6500t\\/s_firmware
lenovo thinkcentre_m8500t\\/s_firmware
lenovo thinkcentre_x1_firmware
lenovo thinkstation_p300_firmware
lenovo thinkstation_p500_firmware
lenovo thinkstation_p700_firmware
lenovo thinkstation_p900_firmware

NVD-CWE-noinfo https://support.lenovo.com/us/en/product_security/LEN-67440 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2021-3719

Vulnerability Summary

Vulnerability Trend

References

Vulmon Search

About

Products

Connect