// For flags

CVE-2021-4212

 

Severity Score

6.7
*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

A potential vulnerability in the SMI callback function used in the Legacy BIOS mode driver in some Lenovo Notebook models may allow an attacker with local access and elevated privileges to execute arbitrary code.

Una posible vulnerabilidad en la función de devolución de llamadas SMI usada en el controlador del modo BIOS heredado en algunos modelos de portátiles Lenovo puede permitir a un atacante con acceso local y altos privilegios ejecutar código arbitrario

*Credits: Lenovo thanks Jiawei Yin(@yngweijw) and Menghao Li of IIE varas
CVSS Scores
Attack Vector
Local
Attack Complexity
Low
Privileges Required
High
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High
Attack Vector
Local
Attack Complexity
Low
Authentication
None
Confidentiality
Complete
Integrity
Complete
Availability
Complete
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2022-01-24 CVE Reserved
  • 2022-04-22 CVE Published
  • 2023-03-08 EPSS Updated
  • 2024-08-03 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
  • CWE-20: Improper Input Validation
CAPEC
References (1)
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Lenovo
Search vendor "Lenovo"
C340-14iml Firmware
Search vendor "Lenovo" for product "C340-14iml Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
C340-14iml
Search vendor "Lenovo" for product "C340-14iml"
--
Safe
Lenovo
Search vendor "Lenovo"
C340-15iml Firmware
Search vendor "Lenovo" for product "C340-15iml Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
C340-15iml
Search vendor "Lenovo" for product "C340-15iml"
--
Safe
Lenovo
Search vendor "Lenovo"
D330-10igm Firmware
Search vendor "Lenovo" for product "D330-10igm Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
D330-10igm
Search vendor "Lenovo" for product "D330-10igm"
--
Safe
Lenovo
Search vendor "Lenovo"
Duet 3-10igl5 Firmware
Search vendor "Lenovo" for product "Duet 3-10igl5 Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
Duet 3-10igl5
Search vendor "Lenovo" for product "Duet 3-10igl5"
--
Safe
Lenovo
Search vendor "Lenovo"
E41-50 Firmware
Search vendor "Lenovo" for product "E41-50 Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
E41-50
Search vendor "Lenovo" for product "E41-50"
--
Safe
Lenovo
Search vendor "Lenovo"
Flex-14iml Firmware
Search vendor "Lenovo" for product "Flex-14iml Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
Flex-14iml
Search vendor "Lenovo" for product "Flex-14iml"
--
Safe
Lenovo
Search vendor "Lenovo"
Flex-15iml Firmware
Search vendor "Lenovo" for product "Flex-15iml Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
Flex-15iml
Search vendor "Lenovo" for product "Flex-15iml"
--
Safe
Lenovo
Search vendor "Lenovo"
Ideapad 3-14are05 Firmware
Search vendor "Lenovo" for product "Ideapad 3-14are05 Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
Ideapad 3-14are05
Search vendor "Lenovo" for product "Ideapad 3-14are05"
--
Safe
Lenovo
Search vendor "Lenovo"
Ideapad 3-15are05 Firmware
Search vendor "Lenovo" for product "Ideapad 3-15are05 Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
Ideapad 3-15are05
Search vendor "Lenovo" for product "Ideapad 3-15are05"
--
Safe
Lenovo
Search vendor "Lenovo"
Ideapad 3-17are05 Firmware
Search vendor "Lenovo" for product "Ideapad 3-17are05 Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
Ideapad 3-17are05
Search vendor "Lenovo" for product "Ideapad 3-17are05"
--
Safe
Lenovo
Search vendor "Lenovo"
Ideapad 5-14alc05 Firmware
Search vendor "Lenovo" for product "Ideapad 5-14alc05 Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
Ideapad 5-14alc05
Search vendor "Lenovo" for product "Ideapad 5-14alc05"
--
Safe
Lenovo
Search vendor "Lenovo"
Ideapad 5-14are05 Firmware
Search vendor "Lenovo" for product "Ideapad 5-14are05 Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
Ideapad 5-14are05
Search vendor "Lenovo" for product "Ideapad 5-14are05"
--
Safe
Lenovo
Search vendor "Lenovo"
Ideapad 5-15itl05 Firmware
Search vendor "Lenovo" for product "Ideapad 5-15itl05 Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
Ideapad 5-15itl05
Search vendor "Lenovo" for product "Ideapad 5-15itl05"
--
Safe
Lenovo
Search vendor "Lenovo"
Ideapad 5 Pro-14acn6 Firmware
Search vendor "Lenovo" for product "Ideapad 5 Pro-14acn6 Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
Ideapad 5 Pro-14acn6
Search vendor "Lenovo" for product "Ideapad 5 Pro-14acn6"
--
Safe
Lenovo
Search vendor "Lenovo"
Ideapad 5 Pro-14itl6 Firmware
Search vendor "Lenovo" for product "Ideapad 5 Pro-14itl6 Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
Ideapad 5 Pro-14itl6
Search vendor "Lenovo" for product "Ideapad 5 Pro-14itl6"
--
Safe
Lenovo
Search vendor "Lenovo"
Ideapad 5 Pro-16ihu6 Firmware
Search vendor "Lenovo" for product "Ideapad 5 Pro-16ihu6 Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
Ideapad 5 Pro-16ihu6
Search vendor "Lenovo" for product "Ideapad 5 Pro-16ihu6"
--
Safe
Lenovo
Search vendor "Lenovo"
Ideapad Creator 5-15imh05 Firmware
Search vendor "Lenovo" for product "Ideapad Creator 5-15imh05 Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
Ideapad Creator 5-15imh05
Search vendor "Lenovo" for product "Ideapad Creator 5-15imh05"
--
Safe
Lenovo
Search vendor "Lenovo"
Ideapad Gaming 3-15ach6 Firmware
Search vendor "Lenovo" for product "Ideapad Gaming 3-15ach6 Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
Ideapad Gaming 3-15ach6
Search vendor "Lenovo" for product "Ideapad Gaming 3-15ach6"
--
Safe
Lenovo
Search vendor "Lenovo"
Ideapad Gaming 3-15arh05 Firmware
Search vendor "Lenovo" for product "Ideapad Gaming 3-15arh05 Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
Ideapad Gaming 3-15arh05
Search vendor "Lenovo" for product "Ideapad Gaming 3-15arh05"
--
Safe
Lenovo
Search vendor "Lenovo"
Ideapad Gaming 3-15imh05 Firmware
Search vendor "Lenovo" for product "Ideapad Gaming 3-15imh05 Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
Ideapad Gaming 3-15imh05
Search vendor "Lenovo" for product "Ideapad Gaming 3-15imh05"
--
Safe
Lenovo
Search vendor "Lenovo"
L340-15irh Firmware
Search vendor "Lenovo" for product "L340-15irh Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
L340-15irh
Search vendor "Lenovo" for product "L340-15irh"
--
Safe
Lenovo
Search vendor "Lenovo"
L340-15iwl Firmware
Search vendor "Lenovo" for product "L340-15iwl Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
L340-15iwl
Search vendor "Lenovo" for product "L340-15iwl"
--
Safe
Lenovo
Search vendor "Lenovo"
L340-15iwl Touch Firmware
Search vendor "Lenovo" for product "L340-15iwl Touch Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
L340-15iwl Touch
Search vendor "Lenovo" for product "L340-15iwl Touch"
--
Safe
Lenovo
Search vendor "Lenovo"
L340-17irh Firmware
Search vendor "Lenovo" for product "L340-17irh Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
L340-17irh
Search vendor "Lenovo" for product "L340-17irh"
--
Safe
Lenovo
Search vendor "Lenovo"
L340-17iwl Firmware
Search vendor "Lenovo" for product "L340-17iwl Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
L340-17iwl
Search vendor "Lenovo" for product "L340-17iwl"
--
Safe
Lenovo
Search vendor "Lenovo"
Legion Y540-15irh Firmware
Search vendor "Lenovo" for product "Legion Y540-15irh Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
Legion Y540-15irh
Search vendor "Lenovo" for product "Legion Y540-15irh"
--
Safe
Lenovo
Search vendor "Lenovo"
Legion Y540-15irh-pg0 Firmware
Search vendor "Lenovo" for product "Legion Y540-15irh-pg0 Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
Legion Y540-15irh-pg0
Search vendor "Lenovo" for product "Legion Y540-15irh-pg0"
--
Safe
Lenovo
Search vendor "Lenovo"
Legion Y540-17irh Firmware
Search vendor "Lenovo" for product "Legion Y540-17irh Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
Legion Y540-17irh
Search vendor "Lenovo" for product "Legion Y540-17irh"
--
Safe
Lenovo
Search vendor "Lenovo"
Legion Y540-17irh-pg0 Firmware
Search vendor "Lenovo" for product "Legion Y540-17irh-pg0 Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
Legion Y540-17irh-pg0
Search vendor "Lenovo" for product "Legion Y540-17irh-pg0"
--
Safe
Lenovo
Search vendor "Lenovo"
Legion Y545 Firmware
Search vendor "Lenovo" for product "Legion Y545 Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
Legion Y545
Search vendor "Lenovo" for product "Legion Y545"
--
Safe
Lenovo
Search vendor "Lenovo"
Legion Y545-pg0 Firmware
Search vendor "Lenovo" for product "Legion Y545-pg0 Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
Legion Y545-pg0
Search vendor "Lenovo" for product "Legion Y545-pg0"
--
Safe
Lenovo
Search vendor "Lenovo"
Legion Y7000-2019 Firmware
Search vendor "Lenovo" for product "Legion Y7000-2019 Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
Legion Y7000-2019
Search vendor "Lenovo" for product "Legion Y7000-2019"
--
Safe
Lenovo
Search vendor "Lenovo"
Legion Y7000-2019-pg0 Firmware
Search vendor "Lenovo" for product "Legion Y7000-2019-pg0 Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
Legion Y7000-2019-pg0
Search vendor "Lenovo" for product "Legion Y7000-2019-pg0"
--
Safe
Lenovo
Search vendor "Lenovo"
S340-13iml Firmware
Search vendor "Lenovo" for product "S340-13iml Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
S340-13iml
Search vendor "Lenovo" for product "S340-13iml"
--
Safe
Lenovo
Search vendor "Lenovo"
S340-14api Firmware
Search vendor "Lenovo" for product "S340-14api Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
S340-14api
Search vendor "Lenovo" for product "S340-14api"
--
Safe
Lenovo
Search vendor "Lenovo"
S340-14iml Firmware
Search vendor "Lenovo" for product "S340-14iml Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
S340-14iml
Search vendor "Lenovo" for product "S340-14iml"
--
Safe
Lenovo
Search vendor "Lenovo"
S340-15api Firmware
Search vendor "Lenovo" for product "S340-15api Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
S340-15api
Search vendor "Lenovo" for product "S340-15api"
--
Safe
Lenovo
Search vendor "Lenovo"
S340-15api Touch Firmware
Search vendor "Lenovo" for product "S340-15api Touch Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
S340-15api Touch
Search vendor "Lenovo" for product "S340-15api Touch"
--
Safe
Lenovo
Search vendor "Lenovo"
S340-15iml Firmware
Search vendor "Lenovo" for product "S340-15iml Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
S340-15iml
Search vendor "Lenovo" for product "S340-15iml"
--
Safe
Lenovo
Search vendor "Lenovo"
S540-14iml Firmware
Search vendor "Lenovo" for product "S540-14iml Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
S540-14iml
Search vendor "Lenovo" for product "S540-14iml"
--
Safe
Lenovo
Search vendor "Lenovo"
S540-14iml Touch Firmware
Search vendor "Lenovo" for product "S540-14iml Touch Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
S540-14iml Touch
Search vendor "Lenovo" for product "S540-14iml Touch"
--
Safe
Lenovo
Search vendor "Lenovo"
S540-15iml Firmware
Search vendor "Lenovo" for product "S540-15iml Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
S540-15iml
Search vendor "Lenovo" for product "S540-15iml"
--
Safe
Lenovo
Search vendor "Lenovo"
Slim 7-14are05 Firmware
Search vendor "Lenovo" for product "Slim 7-14are05 Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
Slim 7-14are05
Search vendor "Lenovo" for product "Slim 7-14are05"
--
Safe
Lenovo
Search vendor "Lenovo"
Slim 7-14itl05 Firmware
Search vendor "Lenovo" for product "Slim 7-14itl05 Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
Slim 7-14itl05
Search vendor "Lenovo" for product "Slim 7-14itl05"
--
Safe
Lenovo
Search vendor "Lenovo"
Slim 7-15iil05 Firmware
Search vendor "Lenovo" for product "Slim 7-15iil05 Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
Slim 7-15iil05
Search vendor "Lenovo" for product "Slim 7-15iil05"
--
Safe
Lenovo
Search vendor "Lenovo"
Slim 7-15imh05 Firmware
Search vendor "Lenovo" for product "Slim 7-15imh05 Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
Slim 7-15imh05
Search vendor "Lenovo" for product "Slim 7-15imh05"
--
Safe
Lenovo
Search vendor "Lenovo"
Slim 7-15itl05 Firmware
Search vendor "Lenovo" for product "Slim 7-15itl05 Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
Slim 7-15itl05
Search vendor "Lenovo" for product "Slim 7-15itl05"
--
Safe
Lenovo
Search vendor "Lenovo"
Thinkbook 13x Itg Firmware
Search vendor "Lenovo" for product "Thinkbook 13x Itg Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
Thinkbook 13x Itg
Search vendor "Lenovo" for product "Thinkbook 13x Itg"
--
Safe
Lenovo
Search vendor "Lenovo"
Thinkbook 14 G3 Itl Firmware
Search vendor "Lenovo" for product "Thinkbook 14 G3 Itl Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
Thinkbook 14 G3 Itl
Search vendor "Lenovo" for product "Thinkbook 14 G3 Itl"
--
Safe
Lenovo
Search vendor "Lenovo"
Thinkbook Plus G2 Itg Firmware
Search vendor "Lenovo" for product "Thinkbook Plus G2 Itg Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
Thinkbook Plus G2 Itg
Search vendor "Lenovo" for product "Thinkbook Plus G2 Itg"
--
Safe
Lenovo
Search vendor "Lenovo"
V14-are Firmware
Search vendor "Lenovo" for product "V14-are Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
V14-are
Search vendor "Lenovo" for product "V14-are"
--
Safe
Lenovo
Search vendor "Lenovo"
V140-15iwl Firmware
Search vendor "Lenovo" for product "V140-15iwl Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
V140-15iwl
Search vendor "Lenovo" for product "V140-15iwl"
--
Safe
Lenovo
Search vendor "Lenovo"
V340-17iwl Firmware
Search vendor "Lenovo" for product "V340-17iwl Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
V340-17iwl
Search vendor "Lenovo" for product "V340-17iwl"
--
Safe
Lenovo
Search vendor "Lenovo"
Yoga 6-13alc6 Firmware
Search vendor "Lenovo" for product "Yoga 6-13alc6 Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
Yoga 6-13alc6
Search vendor "Lenovo" for product "Yoga 6-13alc6"
--
Safe
Lenovo
Search vendor "Lenovo"
Yoga Creator 7-15imh05 Firmware
Search vendor "Lenovo" for product "Yoga Creator 7-15imh05 Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
Yoga Creator 7-15imh05
Search vendor "Lenovo" for product "Yoga Creator 7-15imh05"
--
Safe
Lenovo
Search vendor "Lenovo"
Yoga Slim 7-14are05 Firmware
Search vendor "Lenovo" for product "Yoga Slim 7-14are05 Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
Yoga Slim 7-14are05
Search vendor "Lenovo" for product "Yoga Slim 7-14are05"
--
Safe
Lenovo
Search vendor "Lenovo"
Yoga Slim 7-14iil05 Firmware
Search vendor "Lenovo" for product "Yoga Slim 7-14iil05 Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
Yoga Slim 7-14iil05
Search vendor "Lenovo" for product "Yoga Slim 7-14iil05"
--
Safe
Lenovo
Search vendor "Lenovo"
Yoga Slim 7-14itl05 Firmware
Search vendor "Lenovo" for product "Yoga Slim 7-14itl05 Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
Yoga Slim 7-14itl05
Search vendor "Lenovo" for product "Yoga Slim 7-14itl05"
--
Safe
Lenovo
Search vendor "Lenovo"
Yoga Slim 7-15iil05 Firmware
Search vendor "Lenovo" for product "Yoga Slim 7-15iil05 Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
Yoga Slim 7-15iil05
Search vendor "Lenovo" for product "Yoga Slim 7-15iil05"
--
Safe
Lenovo
Search vendor "Lenovo"
Yoga Slim 7-15imh05 Firmware
Search vendor "Lenovo" for product "Yoga Slim 7-15imh05 Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
Yoga Slim 7-15imh05
Search vendor "Lenovo" for product "Yoga Slim 7-15imh05"
--
Safe
Lenovo
Search vendor "Lenovo"
Yoga Slim 7-15itl05 Firmware
Search vendor "Lenovo" for product "Yoga Slim 7-15itl05 Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
Yoga Slim 7-15itl05
Search vendor "Lenovo" for product "Yoga Slim 7-15itl05"
--
Safe
Lenovo
Search vendor "Lenovo"
Yoga Slim 7 Carbon 13itl5 Firmware
Search vendor "Lenovo" for product "Yoga Slim 7 Carbon 13itl5 Firmware"
--
Affected
in Lenovo
Search vendor "Lenovo"
Yoga Slim 7 Carbon 13itl5
Search vendor "Lenovo" for product "Yoga Slim 7 Carbon 13itl5"
--
Safe