Vulnerability CVE-2018-9069


Published: 2018-10-02

Description:
In some Lenovo IdeaPad consumer notebook models, a race condition in the BIOS flash device locking mechanism is not adequately protected against, potentially allowing an attacker with administrator access to alter the contents of BIOS.

Type:

CWE-362

Vendor: HP
Product: 320-15ikbrn firmware 
Product: Lenovo ideapad y520-15ikbn firmware 
Product: Yoga 720-13ikbr firmware 
Product: 320-17ikbrn 
Product: Lenovo ideapad 320s-15ikbr firmware 
Product: Y720-15ikb firmware 
Product: Lenovo ideapad 320-14ikb(i+a) firmware 
Product: V510-15ikb firmware 
Product: E52-80 firmware 
Product: V310-15ikb firmware 
Product: 720s-13ikb firmware 
Product: R720-15ikbn firmware 
Product: 7000-15 u42 firmware 
Product: Lenovo yoga 520-14ikb firmware 
Product: 320s-15ikb firmware 
Product: Lenovo tianyi 310-15ikb firmware 
Product: Zhaoyang k42-80 firmware 
Product: Miix 720-12ikb 
Product: Lenovo ideapad 720s-14ikb firmware 
Product: Yoga 510-14isk firmware 
Product: Lenovo ideapad 320-15abr firmware 
Product: Xx chao5000-ikbra firmware 
Product: Flex 5-1470 firmware 
Product: V330-14ikb firmware 
Product: B320-14ikb firmware 
Product: Rescuer y520-15ikbm firmware 
Product: 710s plus-13ikb 16g firmware 
Product: Nano110-14ikb firmware 
Product: 510s-14isk firmware 
Product: Lenovo y520-15ikba firmware 
Product: 320-15ikbra firmware 
Product: Lenovo ideapad flex 5-1570 firmware 
Product: Yoga 720-13ikb firmware 
Product: Lenovo ideapad 320s-14ikbr firmware 
Product: Y520-15ikbn firmware 
Product: Ideapad 2in1 14 firmware 
Product: V510-14ikb firmware 
Product: E43-80 kbl firmware 
Product: V310-14isk firmware 
Product: 710s plus touch-13ikb firmware 
Product: R720-15ikba firmware 
Product: 520s-14ikb firmware 
Product: Lenovo y720-15ikb firmware 
Product: 320-15ikbrn touch firmware 
Product: Lenovo tianyi 310-14ikb firmware 
Product: Yoga 720-15ikb firmware 
Product: 320s-14ikb 
Product: Lenovo ideapad 520s-14ikbr firmware 
Product: Yoga 310-11iap firmware 
Product: Lenovo ideapad 320-14ikb(i+n) firmware 
Product: Xiaoxinair13ikbpro firmware 
Product: Flex 4-1470 firmware 
Product: V310-15isk firmware 
Product: 720s-14ikbr firmware 
Product: Rescuer r720-15ikbm firmware 
Product: 7000 u42 firmware 
Product: Lenovo yoga 520-15ikb firmware 
Product: 320s-15isk firmware 
Product: Lenovo v720-14 firmware 
Product: 310s-14isk firmware 
Product: Lenovo ideapad flex 5-1470 firmware 
Product: Yoga 520-14ikb firmware 
Product: Lenovo ideapad 320-15ikb(i+n) firmware 
Product: Y520-15ikba firmware 
Product: Flex 5-1570 firmware 
Product: V330-14isk firmware 
Product: E42-80 firmware 
Product: V310-14ikb firmware 
Product: 710s plus-3ikb firmware 
Product: Nano110-15ikb firmware 
Product: 520-15ikbrn firmware 
Product: Lenovo y520-15ikbm firmware 

CVSS2 => (AV:N/AC:M/Au:S/C:N/I:P/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
7/10
7.8/10
6.8/10
Exploit range
Attack complexity
Authentication
Remote
Medium
Single time
Confidentiality impact
Integrity impact
Availability impact
None
Partial
Complete

 References:
https://support.lenovo.com/us/en/solutions/LEN-20184

Related CVE
CVE-2019-6333
A potential security vulnerability has been identified with certain versions of HP Touchpoint Analytics prior to version 4.1.4.2827. This vulnerability may allow a local attacker with administrative privileges to execute arbitrary code via an HP Touc...
CVE-2019-11656
Stored XSS vulnerability in Micro Focus ArcSight Logger, affects versions prior to Logger 6.7.1 HotFix 6.7.1.8262.0. This vulnerability could allow Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting').
CVE-2019-11655
Unrestricted file upload vulnerability in Micro Focus ArcSight Logger, version 6.7.0 and later. This vulnerability could allow Unrestricted Upload of File with Dangerous type.
CVE-2019-5408
Command View Advanced Edition (CVAE) products contain a vulnerability that could expose configuration information of hosts and storage systems that are managed by Device Manager server. This problem is due to a vulnerability in Device Manager GUI. Th...
CVE-2019-5407
A remote information disclosure vulnerability was discovered in HPE 3PAR StoreServ Management and Core Software Media version(s): prior to 3.5.0.1.
CVE-2019-5406
A remote session reuse vulnerability was discovered in HPE 3PAR StoreServ Management and Core Software Media version(s): prior to 3.5.0.1.
CVE-2019-5405
A remote authorization bypass vulnerability was discovered in HPE 3PAR StoreServ Management and Core Software Media version(s): prior to 3.5.0.1.
CVE-2019-5404
A remote script injection vulnerability was discovered in HPE 3PAR StoreServ Management and Core Software Media version(s): prior to 3.5.0.1.

Copyright 2019, cxsecurity.com

 

Back to Top