Podatność CVE-2016-8222


Publikacja: 2016-11-30

Opis:
A vulnerability has been identified in a signed kernel driver for the BIOS of some ThinkPad systems that can allow an attacker with Windows administrator-level privileges to call System Management Mode (SMM) services. This could lead to a denial of service attack or allow certain BIOS variables or settings to be altered (such as boot sequence). The setting or changing of BIOS passwords is not affected by this vulnerability.

CVSS2 => (AV:L/AC:M/Au:N/C:N/I:N/A:C)

Ogólna skala CVSS
Znaczenie
Łatwość wykorzystania
4.7/10
6.9/10
3.4/10
Wymagany dostęp
Złożoność ataku
Autoryzacja
Lokalny
Średnia
Nie wymagana
Wpływ na poufność
Wpływ na integralność
Wpływ na dostępność
Brak
Brak
Pełny
Affected software
Lenovo -> Thinkpad t540 bios 
Lenovo -> Thinkpad x240s bios 
Lenovo -> Thinkpad e565 bios 
Lenovo -> Thinkpad s1 yoga non vpro bios 
Lenovo -> Thinkpad t540p bios 
Lenovo -> Thinkpad x250 broadwell bios 
Lenovo -> Thinkpad 10 ella 2 bios 
Lenovo -> Thinkpad edge e440 bios 
Lenovo -> Thinkpad s1 yoga vpro bios 
Lenovo -> Thinkpad t550 bios 
Lenovo -> Thinkpad x250 sharkbay bios 
Lenovo -> Thinkpad 11e beema bios 
Lenovo -> Thinkpad edge e445 bios 
Lenovo -> Thinkpad s3 s440 bios 
Lenovo -> Thinkpad t560 bios 
Lenovo -> Thinkpad x260 bios 
Lenovo -> Thinkpad 11e braswell bios 
Lenovo -> Thinkpad edge e540 bios 
Lenovo -> Thinkpad s3 yoga 14 bios 
Lenovo -> Thinkpad tablet 10 bios 
Lenovo -> Thinkpad yoga 11e beema bios 
Lenovo -> Thinkpad 11e broadwell bios 
Lenovo -> Thinkpad edge e545 bios 
Lenovo -> Thinkpad s540 bios 
Lenovo -> Thinkpad tablet 8 bios 
Lenovo -> Thinkpad yoga 11e bios 
Lenovo -> Thinkpad 11e skylake bios 
Lenovo -> Thinkpad helix 20cg bios 
Lenovo -> Thinkpad s5 e560p bios 
Lenovo -> Thinkpad w540 bios 
Lenovo -> Thinkpad yoga 11e braswell bios 
Lenovo -> Thinkpad 13e bios 
Lenovo -> Thinkpad helix 20ch bios 
Lenovo -> Thinkpad s5 yoga 15 bios 
Lenovo -> Thinkpad w541 bios 
Lenovo -> Thinkpad yoga 11e broadwell bios 
Lenovo -> Thinkpad e450 bios 
Lenovo -> Thinkpad l440 bios 
Lenovo -> Thinkpad t440 bios 
Lenovo -> Thinkpad w550s bios 
Lenovo -> Thinkpad yoga 11e skylake bios 
Lenovo -> Thinkpad e450c bios 
Lenovo -> Thinkpad l450 bios 
Lenovo -> Thinkpad t440p bios 
Lenovo -> Thinkpad x140e amd bios 
Lenovo -> Thinkpad yoga 14 460 s3 bios 
Lenovo -> Thinkpad e455 bios 
Lenovo -> Thinkpad l460 bios 
Lenovo -> Thinkpad t440s bios 
Lenovo -> Thinkpad x1 carbon 20ax bios 
Lenovo -> Thinkpad yoga 260 s1 bios 
Lenovo -> Thinkpad e460 bios 
Lenovo -> Thinkpad l540 bios 
Lenovo -> Thinkpad t440u bios 
Lenovo -> Thinkpad x1 carbon 20bx bios 
Lenovo -> Thinkpad e465 bios 
Lenovo -> Thinkpad l560 bios 
Lenovo -> Thinkpad t450 bios 
Lenovo -> Thinkpad x1 carbon bios 
Lenovo -> Thinkpad e550 bios 
Lenovo -> Thinkpad p50 bios 
Lenovo -> Thinkpad t450s bios 
Lenovo -> Thinkpad x1 tablet bios 
Lenovo -> Thinkpad e550c bios 
Lenovo -> Thinkpad p50s bios 
Lenovo -> Thinkpad t460 bios 
Lenovo -> Thinkpad x1 yoga bios 
Lenovo -> Thinkpad e555 bios 
Lenovo -> Thinkpad p70 bios 
Lenovo -> Thinkpad t460p bios 
Lenovo -> Thinkpad t460s bios 
Lenovo -> Thinkpad x240 bios 
Lenovo -> Thinkpad e560 bios 
Lenovo -> Thinkpad s1 yoga 12 bios 

 Referencje:
http://www.securityfocus.com/bid/94409
https://support.lenovo.com/us/en/solutions/LEN_8327

Copyright 2024, cxsecurity.com

 

Back to Top