Published: 12/11/2021 Updated: 23/11/2021

CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9

CVSS v3 Base Score: 6.7 | Impact Score: 5.9 | Exploitability Score: 0.8

VMScore: 641

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

Subscribe to Thinkpad 11e 3rd Gen Firmware

A potential vulnerability in the SMI function to access EEPROM in some ThinkPad models may allow an attacker with local access and elevated privileges to execute arbitrary code.

Vulnerable Product	Search on Vulmon	Subscribe to Product
lenovo thinkpad_11e_3rd_gen_firmware
lenovo thinkpad_11e_4th_gen_i3_firmware
lenovo thinkpad_11e_4th_gen_i7_firmware
lenovo thinkpad_11e_4th_gen_i5_firmware
lenovo thinkpad_11e_4th_gen_celeron_firmware
lenovo thinkpad_11e_yoga_gen_6_firmware
lenovo thinkpad_13_gen_2_firmware
lenovo thinkpad_l13_firmware
lenovo thinkpad_l13_gen_2_firmware
lenovo thinkpad_l13_yoga_firmware
lenovo thinkpad_l13_yoga_gen_2_firmware
lenovo thinkpad_l14_gen_1_firmware
lenovo thinkpad_l14_firmware
lenovo thinkpad_l15_gen_1_firmware
lenovo thinkpad_l15_firmware
lenovo thinkpad_l380_firmware
lenovo thinkpad_l380_yoga_firmware
lenovo thinkpad_l390_yoga_firmware
lenovo thinkpad_l390_firmware
lenovo thinkpad_s5_2nd_gen_firmware
lenovo thinkpad_t460_firmware
lenovo thinkpad_s2_gen_6_firmware
lenovo thinkpad_s2_yoga_gen_6_firmware
lenovo thinkpad_x12_detachable_gen_1_firmware
lenovo thinkpad_x260_firmware
lenovo thinkpad_x380_yoga_firmware
lenovo thinkpad_x390_yoga_firmware
lenovo thinkpad_11e_5th_gen_firmware
lenovo thinkpad_x1_fold_gen_1_firmware

NVD-CWE-noinfo https://support.lenovo.com/us/en/product_security/LEN-72619 https://nvd.nist.gov

CVE-2021-3843

Vulnerability Summary

Vulnerability Trend

References

Vulmon Search

About

Products

Connect