CVE-2021-3452
Severity Score
6.7
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
A potential vulnerability in the system shutdown SMI callback function in some ThinkPad models may allow an attacker with local access and elevated privileges to execute arbitrary code.
Una potencial vulnerabilidad en la función shutdown SMI callback del sistema en algunos modelos ThinkPad, puede permitir a un atacante con acceso local y privilegios elevados ejecutar código arbitrario
*Credits:
Lenovo thanks Binarly efiXplorer team for reporting these issues.
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2021-03-19 CVE Reserved
- 2021-07-16 CVE Published
- 2023-03-08 EPSS Updated
- 2024-08-03 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-20: Improper Input Validation
CAPEC
References (1)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://support.lenovo.com/us/en/product_security/LEN-65529 | 2021-07-27 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Lenovo Search vendor "Lenovo" | Bios Search vendor "Lenovo" for product "Bios" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Thinkpad 11e 3rd Gen Search vendor "Lenovo" for product "Thinkpad 11e 3rd Gen" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Bios Search vendor "Lenovo" for product "Bios" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Thinkpad 11e 4th Gen Search vendor "Lenovo" for product "Thinkpad 11e 4th Gen" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Bios Search vendor "Lenovo" for product "Bios" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Thinkpad 11e 5th Gen Search vendor "Lenovo" for product "Thinkpad 11e 5th Gen" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Bios Search vendor "Lenovo" for product "Bios" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Thinkpad 11e Yoga Gen 6 Search vendor "Lenovo" for product "Thinkpad 11e Yoga Gen 6" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Bios Search vendor "Lenovo" for product "Bios" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Thinkpad 13 Gen 2 Search vendor "Lenovo" for product "Thinkpad 13 Gen 2" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Bios Search vendor "Lenovo" for product "Bios" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Thinkpad E14 Gen 2 Search vendor "Lenovo" for product "Thinkpad E14 Gen 2" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Bios Search vendor "Lenovo" for product "Bios" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Thinkpad E15 Gen 2 Search vendor "Lenovo" for product "Thinkpad E15 Gen 2" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Bios Search vendor "Lenovo" for product "Bios" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Thinkpad L13 Search vendor "Lenovo" for product "Thinkpad L13" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Bios Search vendor "Lenovo" for product "Bios" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Thinkpad L13 Gen 2 Search vendor "Lenovo" for product "Thinkpad L13 Gen 2" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Bios Search vendor "Lenovo" for product "Bios" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Thinkpad L13 Yoga Search vendor "Lenovo" for product "Thinkpad L13 Yoga" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Bios Search vendor "Lenovo" for product "Bios" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Thinkpad L13 Yogo Gen 2 Search vendor "Lenovo" for product "Thinkpad L13 Yogo Gen 2" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Bios Search vendor "Lenovo" for product "Bios" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Thinkpad L14 Search vendor "Lenovo" for product "Thinkpad L14" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Bios Search vendor "Lenovo" for product "Bios" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Thinkpad L14 Gen 2 Search vendor "Lenovo" for product "Thinkpad L14 Gen 2" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Bios Search vendor "Lenovo" for product "Bios" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Thinkpad L15 Search vendor "Lenovo" for product "Thinkpad L15" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Bios Search vendor "Lenovo" for product "Bios" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Thinkpad L15 Gen 2 Search vendor "Lenovo" for product "Thinkpad L15 Gen 2" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Bios Search vendor "Lenovo" for product "Bios" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Thinkpad L380 Search vendor "Lenovo" for product "Thinkpad L380" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Bios Search vendor "Lenovo" for product "Bios" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Thinkpad L380 Yoga Search vendor "Lenovo" for product "Thinkpad L380 Yoga" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Bios Search vendor "Lenovo" for product "Bios" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Thinkpad L390 Search vendor "Lenovo" for product "Thinkpad L390" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Bios Search vendor "Lenovo" for product "Bios" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Thinkpad L390 Yoga Search vendor "Lenovo" for product "Thinkpad L390 Yoga" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Bios Search vendor "Lenovo" for product "Bios" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Thinkpad T460 Search vendor "Lenovo" for product "Thinkpad T460" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Bios Search vendor "Lenovo" for product "Bios" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Thinkpad X12 Detachable Gen 1 Search vendor "Lenovo" for product "Thinkpad X12 Detachable Gen 1" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Bios Search vendor "Lenovo" for product "Bios" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Thinkpad X260 Search vendor "Lenovo" for product "Thinkpad X260" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Bios Search vendor "Lenovo" for product "Bios" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Thinkpad X380 Yoga Search vendor "Lenovo" for product "Thinkpad X380 Yoga" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Bios Search vendor "Lenovo" for product "Bios" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Thinkpad Yoga 11e 3rd Gen Search vendor "Lenovo" for product "Thinkpad Yoga 11e 3rd Gen" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Bios Search vendor "Lenovo" for product "Bios" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Thinkpad Yoga 11e 4th Gen Search vendor "Lenovo" for product "Thinkpad Yoga 11e 4th Gen" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Bios Search vendor "Lenovo" for product "Bios" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Thinkpad Yoga 370 Search vendor "Lenovo" for product "Thinkpad Yoga 370" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Bios Search vendor "Lenovo" for product "Bios" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Bios Search vendor "Lenovo" for product "Bios" | - | - |
Safe
|