Vulnerability CVE-2019-6156


Published: 2019-04-10

Description:
In Lenovo systems, SMM BIOS Write Protection is used to prevent writes to SPI Flash. While this provides sufficient protection, an additional layer of protection is provided by SPI Protected Range Registers (PRx). Lenovo was notified that after resuming from S3 sleep mode in various versions of BIOS for Lenovo systems, the PRx is not set. This does not impact the SMM BIOS Write Protection, which keeps systems protected.

Type:

CWE-254

(Security Features)

Vendor: Lenovo
Product: Thinkcentre m720t firmware 
Version: m1ukt33a;
Product: Thinkcentre m9550z firmware 
Product: Aio520-24ikl firmware 
Product: Thinkcentre e74s firmware 
Product: Thinkcentre m83z (aio) firmware 
Product: Yangtian mf/wf h81 pci firmware 
Product: 510-15ikl firmware 
Product: Thinkcenter m800z firmware 
Product: Thinkcentre m810z firmware 
Product: Yangtian mc h110 firmware 
Product: Qt a7400 firmware 
Product: Thinkcentre m7300z firmware 
Product: Thinkstation s30 refresh firmware 
Product: Qitian b4550 firmware 
Product: Thinkcentre m700z firmware 
Product: Thinkstation p710 firmware 
Product: Lenovo 63 firmware 
Product: Thinkcentre m4500t firmware 
Product: Thinkstation p500 firmware 
Product: Ideacentre 510s-08ish firmware 
Product: Thinkcentre x1 aio firmware 
Product: Aio520-27ikl firmware 
Product: Thinkcentre e75s firmware 
Product: Thinkcentre m910z firmware 
Product: Yangtian tc/wc h110 pci firmware 
Product: 530s-07icb firmware 
Product: Thinkcentre e73 (twr) firmware 
Product: Thinkcentre m820z firmware 
Product: Yangtian mc h81 firmware 
Product: Qt m410 firmware 
Product: Thinkcentre m73 (twr) firmware 
Product: V520t-15ikl firmware 
Product: Qitian m4550 firmware 
Product: Thinkcentre m710s firmware 
Product: Thinkstation p900 firmware 
Product: M4500 id firmware 
Product: Thinkcentre m4600t firmware 
Product: Thinkstation p520 firmware 
Product: Legion y520t z370 firmware 
Product: Thinkcentre m4500k firmware 
Product: Thinkstation d30 refresh firmware 
Product: H50-30g desktop firmware 
Product: Thinkcentre m9500z firmware 
Product: Yangtian ytm6900e-00 firmware 
Product: Aio520-22iku firmware 
Product: Thinkcentre e74 firmware 
Product: Thinkcentre m8350z firmware 
Product: Yangtian mf/wf h110 pci firmware 
Product: Thinkcenter m700z firmware 
Product: Thinkcentre m800z firmware 
Product: Yangtian afh81 firmware 
Product: Qitian m4650 firmware 
Product: Thinkstation p920 firmware 
Product: Qitian 4500 firmware 
Product: Thinkcentre m700t firmware 
Product: Thinkstation p700 firmware 
Product: Legion y920 tower firmware 
Product: Thinkcentre m4500s firmware 
Product: Thinkstation p410 firmware 
Product: Ideacentre 300s-11ish firmware 
Product: Thinkcentre s510 firmware 
Product: Aio520-24iku firmware 
Product: Thinkcentre e74z firmware 
Product: Thinkcentre m900z firmware 
Product: Yangtian ms/ws h81 firmware 
Product: 510s-08ikl firmware 
Product: Thinkcentre e73 (sff) firmware 
Product: Thinkcentre m818z firmware 
Product: Yangtian mc h110 pci firmware 
Product: Qt b415 firmware 
Product: Thinkcentre m73 (sff) firmware 
Product: V520s-08ikl firmware 
Product: Qitian b4650 firmware 
Product: Thinkcentre m710e firmware 
Product: Thinkstation p720 firmware 
Product: M4500 firmware 
Product: Thinkcentre m4600s firmware 
Product: Thinkstation p510 firmware 
Product: Ideacentre 620s-03ikl firmware 
Product: Thinkstation c30 refresh firmware 
Product: Aio y910-27ish firmware 
Product: Thinkcentre e75t firmware 
Product: Thinkcentre m920z firmware 
Product: Yangtian tc/wcc h81 pci firmware 
Product: Aio520-22ikl firmware 
Product: Thinkcentre e73s firmware 
Product: Thinkcentre m8300z firmware 
Product: Yangtian me/we h110 firmware 
Product: Qt m415 firmware 
Product: Thinkcentre m73 tiny firmware 
Product: Yangtian afh110 firmware 
Product: Qitian m4600 firmware 
Product: Thinkcentre m710t firmware 
Product: Thinkstation p910 firmware 
Product: M4550 id firmware 
Product: Thinkcentre m700s firmware 
Product: Thinkstation p520c firmware 
Product: Legion y720 tower firmware 
Product: Thinkcentre m4500q firmware 
Product: Thinkstation p310 firmware 

CVSS2 => (AV:L/AC:L/Au:N/C:N/I:P/A:N)

CVSS Base Score
Impact Subscore
Exploitability Subscore
2.1/10
2.9/10
3.9/10
Exploit range
Attack complexity
Authentication
Local
Low
No required
Confidentiality impact
Integrity impact
Availability impact
None
Partial
None

 References:
https://support.lenovo.com/solutions/LEN-26332

Related CVE
CVE-2019-6182
A stored CSV Injection vulnerability was reported in Lenovo XClarity Administrator (LXCA) versions prior to 2.5.0 that could allow an administrative user to store malformed data in LXCA Jobs and Event Log data, that could result in crafted formulas s...
CVE-2019-6181
A reflected cross-site scripting (XSS) vulnerability was reported in Lenovo XClarity Administrator (LXCA) versions prior to 2.5.0 that could allow a crafted URL, if visited, to cause JavaScript code to be executed in the user's web browser. The JavaS...
CVE-2019-6180
A stored cross-site scripting (XSS) vulnerability was reported in Lenovo XClarity Administrator (LXCA) versions prior to 2.5.0 that could allow an administrative user to cause JavaScript code to be stored in LXCA which may then be executed in the use...
CVE-2019-6179
An XML External Entity (XXE) processing vulnerability was reported in Lenovo XClarity Administrator (LXCA) prior to version 2.5.0 , Lenovo XClarity Integrator (LXCI) for Microsoft System Center prior to version 7.7.0, and Lenovo XClarity Integrator (...
CVE-2019-10724
There is a vulnerability with the Dolby DAX2 API system services in which a low-privileged user can terminate arbitrary processes that are running at a higher privilege. The following are affected products and versions: Legion Y520T_Z370 6.0.1.8642, ...
CVE-2019-6177
A vulnerability reported in Lenovo Solution Center version 03.12.003, which is no longer supported, could allow log files to be written to non-standard locations, potentially leading to privilege escalation. Lenovo ended support for Lenovo Solution C...
CVE-2019-6178
An information leakage vulnerability in Iomega and LenovoEMC NAS products could allow disclosure of some device details such as Share names through the device API when Personal Cloud is enabled. This does not allow read, write, delete, or any other a...
CVE-2019-6171
A vulnerability was reported in various BIOS versions of older ThinkPad systems that could allow a user with administrative privileges or physical access the ability to update the Embedded Controller with unsigned firmware.

Copyright 2019, cxsecurity.com

 

Back to Top