CVE-2022-1107
6.7
Vector
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Exploitability: 0.8 / Impact: 5.9
Source: NVD
Description
During an internal product security audit a potential vulnerability due to use of Boot Services in the SmmOEMInt15 SMI handler was discovered in some ThinkPad models could be exploited by an attacker with elevated privileges that could allow for execution of code.
Affected (30)
Products: Lenovo: Thinkpad 11e Firmware, Thinkpad Helix Firmware, Thinkpad L560 Firmware, Thinkpad L570 Firmware, Thinkpad P50s Firmware, Thinkpad P51s Firmware, Thinkpad P52s Firmware, Thinkpad S540 Firmware, Thinkpad T550 Firmware, Thinkpad T560 Firmware, Thinkpad T570 Firmware, Thinkpad T580 Firmware, Thinkpad X1 Tablet Gen 1 Firmware, Thinkpad X1 Tablet Gen 2 Firmware, Thinkpad W540 Firmware, Thinkpad W541 Firmware, Thinkpad W550s Firmware, Thinkpad X1 Carbon 3rd Gen Firmware, Thinkpad X1 Carbon 4th Gen Firmware, Thinkpad X1 Carbon 5th Gen Kabylake Firmware, Thinkpad X1 Carbon 5th Gen Skylake Firmware, Thinkpad X1 Yoga Firmware, Thinkpad X1 Yoga Gen 2 Firmware, Thinkpad X1 Yoga Gen 3 Firmware, Thinkpad X250 Firmware, Thinkpad X280 Firmware, Thinkpad X390 Firmware, Thinkpad 11e Yoga Firmware, Thinkpad Yoga 15 Firmware, Thinkpad Yoga 260 Firmware
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Before n15et78w |
| Running on/with | Platform Versions |
|---|---|
Lenovo Thinkpad 11e | All versions |
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| Before n17eta8w |
| Running on/with | Platform Versions |
|---|---|
Lenovo Thinkpad Helix | All versions |
Configuration C
| Vulnerable Software | Affected Versions |
|---|---|
| Before n1het85w |
| Running on/with | Platform Versions |
|---|---|
Lenovo Thinkpad L560 | All versions |
Configuration D
| Vulnerable Software | Affected Versions |
|---|---|
| Before n1xet65w |
| Running on/with | Platform Versions |
|---|---|
Lenovo Thinkpad L570 | All versions |
Configuration E
| Vulnerable Software | Affected Versions |
|---|---|
| Before n1ket46w |
| Running on/with | Platform Versions |
|---|---|
Lenovo Thinkpad P50s | All versions |
Configuration F
| Vulnerable Software | Affected Versions |
|---|---|
| Before n1vet50w |
| Running on/with | Platform Versions |
|---|---|
Lenovo Thinkpad P51s | All versions |
Configuration G
| Vulnerable Software | Affected Versions |
|---|---|
| Before n27et36w |
| Running on/with | Platform Versions |
|---|---|
Lenovo Thinkpad P52s | All versions |
Configuration H
| Vulnerable Software | Affected Versions |
|---|---|
| Before gpet80ww |
| Running on/with | Platform Versions |
|---|---|
Lenovo Thinkpad S540 | All versions |
Configuration I
| Vulnerable Software | Affected Versions |
|---|---|
| Before n11et50w |
| Running on/with | Platform Versions |
|---|---|
Lenovo Thinkpad T550 | All versions |
Configuration J
| Vulnerable Software | Affected Versions |
|---|---|
| Before n1ket46w |
| Running on/with | Platform Versions |
|---|---|
Lenovo Thinkpad T560 | All versions |
Configuration K
| Vulnerable Software | Affected Versions |
|---|---|
| Before n1vet50w |
| Running on/with | Platform Versions |
|---|---|
Lenovo Thinkpad T570 | All versions |
Configuration L
| Vulnerable Software | Affected Versions |
|---|---|
| Before n27et36w |
| Running on/with | Platform Versions |
|---|---|
Lenovo Thinkpad T580 | All versions |
Configuration M
| Vulnerable Software | Affected Versions |
|---|---|
| Before n1let86w |
| Running on/with | Platform Versions |
|---|---|
Lenovo Thinkpad X1 Tablet Gen 1 | All versions |
Configuration N
| Vulnerable Software | Affected Versions |
|---|---|
| Before n1oet50w |
| Running on/with | Platform Versions |
|---|---|
Lenovo Thinkpad X1 Tablet Gen 2 | All versions |
Configuration O
| Vulnerable Software | Affected Versions |
|---|---|
| Before gnet92ww |
| Running on/with | Platform Versions |
|---|---|
Lenovo Thinkpad W540 | All versions |
Configuration P
| Vulnerable Software | Affected Versions |
|---|---|
| Before gnet92ww |
| Running on/with | Platform Versions |
|---|---|
Lenovo Thinkpad W541 | All versions |
Configuration Q
| Vulnerable Software | Affected Versions |
|---|---|
| Before n11et50w |
| Running on/with | Platform Versions |
|---|---|
Lenovo Thinkpad W550s | All versions |
Configuration R
| Vulnerable Software | Affected Versions |
|---|---|
| Before n14et52w |
| Running on/with | Platform Versions |
|---|---|
Lenovo Thinkpad X1 Carbon 3rd Gen | All versions |
Configuration S
| Vulnerable Software | Affected Versions |
|---|---|
| Before n1fet70w |
| Running on/with | Platform Versions |
|---|---|
Lenovo Thinkpad X1 Carbon 4th Gen | All versions |
Configuration T
| Vulnerable Software | Affected Versions |
|---|---|
| Before n1met55w |
| Running on/with | Platform Versions |
|---|---|
Lenovo Thinkpad X1 Carbon 5th Gen Kabylake | All versions |
Configuration U
| Vulnerable Software | Affected Versions |
|---|---|
| Before n1met55w |
| Running on/with | Platform Versions |
|---|---|
Lenovo Thinkpad X1 Carbon 5th Gen Skylake | All versions |
Configuration V
| Vulnerable Software | Affected Versions |
|---|---|
| Before n1fet70w |
| Running on/with | Platform Versions |
|---|---|
Lenovo Thinkpad X1 Yoga | All versions |
Configuration W
| Vulnerable Software | Affected Versions |
|---|---|
| Before n1net47w |
| Running on/with | Platform Versions |
|---|---|
Lenovo Thinkpad X1 Yoga Gen 2 | All versions |
Configuration X
| Vulnerable Software | Affected Versions |
|---|---|
| Before n25et50w |
| Running on/with | Platform Versions |
|---|---|
Lenovo Thinkpad X1 Yoga Gen 3 | All versions |
Configuration Y
| Vulnerable Software | Affected Versions |
|---|---|
| Before n10et58w |
| Running on/with | Platform Versions |
|---|---|
Lenovo Thinkpad X250 | All versions |
Configuration Z
| Vulnerable Software | Affected Versions |
|---|---|
| Before n20et44w |
| Running on/with | Platform Versions |
|---|---|
Lenovo Thinkpad X280 | All versions |
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Before n2let60w |
| Running on/with | Platform Versions |
|---|---|
Lenovo Thinkpad X390 | All versions |
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| Before n15et78w |
| Running on/with | Platform Versions |
|---|---|
Lenovo Thinkpad 11e Yoga | All versions |
Configuration C
| Vulnerable Software | Affected Versions |
|---|---|
| Before n19et61w |
| Running on/with | Platform Versions |
|---|---|
Lenovo Thinkpad Yoga 15 | All versions |
Configuration D
| Vulnerable Software | Affected Versions |
|---|---|
| Before n1get98w |
| Running on/with | Platform Versions |
|---|---|
Lenovo Thinkpad Yoga 260 | All versions |
Related CWEs
CWE-20
Improper Input Validation
The product receives input or data, but it does
not validate or incorrectly validates that the input has the
properties that are required to process the data safely and
correctly.
CWE-269
Improper Privilege Management
The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.
References (2)
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Timeline
No history available yet.