CVE-2021-4211
Severity Score
6.7
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
A potential vulnerability in the SMI callback function used in the SMBIOS event log driver in some Lenovo Desktop, ThinkStation, and ThinkEdge models may allow an attacker with local access and elevated privileges to execute arbitrary code.
Una posible vulnerabilidad en la función de devolución de llamada SMI usada en el controlador de registro de eventos SMBIOS en algunos modelos de Lenovo Desktop, ThinkStation y ThinkEdge puede permitir a un atacante con acceso local y altos privilegios ejecutar código arbitrario
*Credits:
Lenovo thanks Jiawei Yin(@yngweijw) and Menghao Li of IIE varas
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2022-01-24 CVE Reserved
- 2022-04-22 CVE Published
- 2023-03-08 EPSS Updated
- 2024-08-03 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-20: Improper Input Validation
CAPEC
References (1)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://support.lenovo.com/us/en/product_security/LEN-77639 | 2022-05-11 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Lenovo Search vendor "Lenovo" | A340-22icb Firmware Search vendor "Lenovo" for product "A340-22icb Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | A340-22icb Search vendor "Lenovo" for product "A340-22icb" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | A340-22ick Firmware Search vendor "Lenovo" for product "A340-22ick Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | A340-22ick Search vendor "Lenovo" for product "A340-22ick" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | A340-24icb Firmware Search vendor "Lenovo" for product "A340-24icb Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | A340-24icb Search vendor "Lenovo" for product "A340-24icb" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | A340-24ick Firmware Search vendor "Lenovo" for product "A340-24ick Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | A340-24ick Search vendor "Lenovo" for product "A340-24ick" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | A540-24icb Firmware Search vendor "Lenovo" for product "A540-24icb Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | A540-24icb Search vendor "Lenovo" for product "A540-24icb" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | A540-27icb Firmware Search vendor "Lenovo" for product "A540-27icb Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | A540-27icb Search vendor "Lenovo" for product "A540-27icb" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Ideacentre 5-14iob6 Firmware Search vendor "Lenovo" for product "Ideacentre 5-14iob6 Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Ideacentre 5-14iob6 Search vendor "Lenovo" for product "Ideacentre 5-14iob6" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Ideacentre 510s-07icb Firmware Search vendor "Lenovo" for product "Ideacentre 510s-07icb Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Ideacentre 510s-07icb Search vendor "Lenovo" for product "Ideacentre 510s-07icb" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Ideacentre 510s-07ick Firmware Search vendor "Lenovo" for product "Ideacentre 510s-07ick Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Ideacentre 510s-07ick Search vendor "Lenovo" for product "Ideacentre 510s-07ick" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Ideacentre Aio 3-22ada6 Firmware Search vendor "Lenovo" for product "Ideacentre Aio 3-22ada6 Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Ideacentre Aio 3-22ada6 Search vendor "Lenovo" for product "Ideacentre Aio 3-22ada6" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Ideacentre Aio 3-22iil5 Firmware Search vendor "Lenovo" for product "Ideacentre Aio 3-22iil5 Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Ideacentre Aio 3-22iil5 Search vendor "Lenovo" for product "Ideacentre Aio 3-22iil5" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Ideacentre Aio 3-22itl6 Firmware Search vendor "Lenovo" for product "Ideacentre Aio 3-22itl6 Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Ideacentre Aio 3-22itl6 Search vendor "Lenovo" for product "Ideacentre Aio 3-22itl6" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Ideacentre Aio 3-24ada6 Firmware Search vendor "Lenovo" for product "Ideacentre Aio 3-24ada6 Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Ideacentre Aio 3-24ada6 Search vendor "Lenovo" for product "Ideacentre Aio 3-24ada6" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Ideacentre Aio 3-24iil5 Firmware Search vendor "Lenovo" for product "Ideacentre Aio 3-24iil5 Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Ideacentre Aio 3-24iil5 Search vendor "Lenovo" for product "Ideacentre Aio 3-24iil5" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Ideacentre Aio 3-24itl6 Firmware Search vendor "Lenovo" for product "Ideacentre Aio 3-24itl6 Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Ideacentre Aio 3-24itl6 Search vendor "Lenovo" for product "Ideacentre Aio 3-24itl6" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Ideacentre Aio 3-27itl6 Firmware Search vendor "Lenovo" for product "Ideacentre Aio 3-27itl6 Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Ideacentre Aio 3-27itl6 Search vendor "Lenovo" for product "Ideacentre Aio 3-27itl6" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Ideacentre Creator 5-14iob6 Firmware Search vendor "Lenovo" for product "Ideacentre Creator 5-14iob6 Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Ideacentre Creator 5-14iob6 Search vendor "Lenovo" for product "Ideacentre Creator 5-14iob6" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Ideacentre Gaming 5-14iob6 Firmware Search vendor "Lenovo" for product "Ideacentre Gaming 5-14iob6 Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Ideacentre Gaming 5-14iob6 Search vendor "Lenovo" for product "Ideacentre Gaming 5-14iob6" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Se30 Firmware Search vendor "Lenovo" for product "Se30 Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Se30 Search vendor "Lenovo" for product "Se30" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Thinkcentre M600 Firmware Search vendor "Lenovo" for product "Thinkcentre M600 Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Thinkcentre M600 Search vendor "Lenovo" for product "Thinkcentre M600" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Thinkcentre M700 Tiny Firmware Search vendor "Lenovo" for product "Thinkcentre M700 Tiny Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Thinkcentre M700 Tiny Search vendor "Lenovo" for product "Thinkcentre M700 Tiny" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Thinkcentre M70a Firmware Search vendor "Lenovo" for product "Thinkcentre M70a Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Thinkcentre M70a Search vendor "Lenovo" for product "Thinkcentre M70a" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Thinkcentre M710e Firmware Search vendor "Lenovo" for product "Thinkcentre M710e Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Thinkcentre M710e Search vendor "Lenovo" for product "Thinkcentre M710e" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Thinkcentre M710q Firmware Search vendor "Lenovo" for product "Thinkcentre M710q Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Thinkcentre M710q Search vendor "Lenovo" for product "Thinkcentre M710q" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Thinkcentre M710q \(10yc\) Firmware Search vendor "Lenovo" for product "Thinkcentre M710q \(10yc\) Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Thinkcentre M710q \(10yc\) Search vendor "Lenovo" for product "Thinkcentre M710q \(10yc\)" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Thinkcentre M710s Firmware Search vendor "Lenovo" for product "Thinkcentre M710s Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Thinkcentre M710s Search vendor "Lenovo" for product "Thinkcentre M710s" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Thinkcentre M710t Firmware Search vendor "Lenovo" for product "Thinkcentre M710t Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Thinkcentre M710t Search vendor "Lenovo" for product "Thinkcentre M710t" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Thinkcentre M720e Firmware Search vendor "Lenovo" for product "Thinkcentre M720e Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Thinkcentre M720e Search vendor "Lenovo" for product "Thinkcentre M720e" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Thinkcentre M75n Firmware Search vendor "Lenovo" for product "Thinkcentre M75n Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Thinkcentre M75n Search vendor "Lenovo" for product "Thinkcentre M75n" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Thinkcentre M800 Firmware Search vendor "Lenovo" for product "Thinkcentre M800 Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Thinkcentre M800 Search vendor "Lenovo" for product "Thinkcentre M800" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Thinkcentre M810z Firmware Search vendor "Lenovo" for product "Thinkcentre M810z Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Thinkcentre M810z Search vendor "Lenovo" for product "Thinkcentre M810z" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Thinkcentre M820z Firmware Search vendor "Lenovo" for product "Thinkcentre M820z Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Thinkcentre M820z Search vendor "Lenovo" for product "Thinkcentre M820z" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Thinkcentre M900 Firmware Search vendor "Lenovo" for product "Thinkcentre M900 Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Thinkcentre M900 Search vendor "Lenovo" for product "Thinkcentre M900" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Thinkcentre M900x Firmware Search vendor "Lenovo" for product "Thinkcentre M900x Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Thinkcentre M900x Search vendor "Lenovo" for product "Thinkcentre M900x" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Thinkcentre M90a \(gen 2\) Firmware Search vendor "Lenovo" for product "Thinkcentre M90a \(gen 2\) Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Thinkcentre M90a \(gen 2\) Search vendor "Lenovo" for product "Thinkcentre M90a \(gen 2\)" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Thinkcentre M910q Firmware Search vendor "Lenovo" for product "Thinkcentre M910q Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Thinkcentre M910q Search vendor "Lenovo" for product "Thinkcentre M910q" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Thinkcentre M910s Firmware Search vendor "Lenovo" for product "Thinkcentre M910s Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Thinkcentre M910s Search vendor "Lenovo" for product "Thinkcentre M910s" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Thinkcentre M910t Firmware Search vendor "Lenovo" for product "Thinkcentre M910t Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Thinkcentre M910t Search vendor "Lenovo" for product "Thinkcentre M910t" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Thinkcentre M910x Firmware Search vendor "Lenovo" for product "Thinkcentre M910x Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Thinkcentre M910x Search vendor "Lenovo" for product "Thinkcentre M910x" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Thinkstation P310 Firmware Search vendor "Lenovo" for product "Thinkstation P310 Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Thinkstation P310 Search vendor "Lenovo" for product "Thinkstation P310" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Thinkstation P320 Firmware Search vendor "Lenovo" for product "Thinkstation P320 Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Thinkstation P320 Search vendor "Lenovo" for product "Thinkstation P320" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Thinkstation P320 Tiny Firmware Search vendor "Lenovo" for product "Thinkstation P320 Tiny Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Thinkstation P320 Tiny Search vendor "Lenovo" for product "Thinkstation P320 Tiny" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | V30a-22iml Firmware Search vendor "Lenovo" for product "V30a-22iml Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | V30a-22iml Search vendor "Lenovo" for product "V30a-22iml" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | V30a-24iml Firmware Search vendor "Lenovo" for product "V30a-24iml Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | V30a-24iml Search vendor "Lenovo" for product "V30a-24iml" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | V410z Firmware Search vendor "Lenovo" for product "V410z Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | V410z Search vendor "Lenovo" for product "V410z" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | V50t-13iob G2 Firmware Search vendor "Lenovo" for product "V50t-13iob G2 Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | V50t-13iob G2 Search vendor "Lenovo" for product "V50t-13iob G2" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | V520 Firmware Search vendor "Lenovo" for product "V520 Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | V520 Search vendor "Lenovo" for product "V520" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | V520s Firmware Search vendor "Lenovo" for product "V520s Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | V520s Search vendor "Lenovo" for product "V520s" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | V530-15icb Firmware Search vendor "Lenovo" for product "V530-15icb Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | V530-15icb Search vendor "Lenovo" for product "V530-15icb" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | V530-15icr Firmware Search vendor "Lenovo" for product "V530-15icr Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | V530-15icr Search vendor "Lenovo" for product "V530-15icr" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | V530s-07icb Firmware Search vendor "Lenovo" for product "V530s-07icb Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | V530s-07icb Search vendor "Lenovo" for product "V530s-07icb" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | V530s-07icr Firmware Search vendor "Lenovo" for product "V530s-07icr Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | V530s-07icr Search vendor "Lenovo" for product "V530s-07icr" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | V540-24iwl Firmware Search vendor "Lenovo" for product "V540-24iwl Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | V540-24iwl Search vendor "Lenovo" for product "V540-24iwl" | - | - |
Safe
|