CVE-2021-4212
Severity Score
6.7
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
A potential vulnerability in the SMI callback function used in the Legacy BIOS mode driver in some Lenovo Notebook models may allow an attacker with local access and elevated privileges to execute arbitrary code.
Una posible vulnerabilidad en la función de devolución de llamadas SMI usada en el controlador del modo BIOS heredado en algunos modelos de portátiles Lenovo puede permitir a un atacante con acceso local y altos privilegios ejecutar código arbitrario
*Credits:
Lenovo thanks Jiawei Yin(@yngweijw) and Menghao Li of IIE varas
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2022-01-24 CVE Reserved
- 2022-04-22 CVE Published
- 2023-03-08 EPSS Updated
- 2024-08-03 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-20: Improper Input Validation
CAPEC
References (1)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://support.lenovo.com/us/en/product_security/LEN-77639 | 2022-05-11 |
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Lenovo Search vendor "Lenovo" | C340-14iml Firmware Search vendor "Lenovo" for product "C340-14iml Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | C340-14iml Search vendor "Lenovo" for product "C340-14iml" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | C340-15iml Firmware Search vendor "Lenovo" for product "C340-15iml Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | C340-15iml Search vendor "Lenovo" for product "C340-15iml" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | D330-10igm Firmware Search vendor "Lenovo" for product "D330-10igm Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | D330-10igm Search vendor "Lenovo" for product "D330-10igm" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Duet 3-10igl5 Firmware Search vendor "Lenovo" for product "Duet 3-10igl5 Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Duet 3-10igl5 Search vendor "Lenovo" for product "Duet 3-10igl5" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | E41-50 Firmware Search vendor "Lenovo" for product "E41-50 Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | E41-50 Search vendor "Lenovo" for product "E41-50" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Flex-14iml Firmware Search vendor "Lenovo" for product "Flex-14iml Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Flex-14iml Search vendor "Lenovo" for product "Flex-14iml" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Flex-15iml Firmware Search vendor "Lenovo" for product "Flex-15iml Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Flex-15iml Search vendor "Lenovo" for product "Flex-15iml" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Ideapad 3-14are05 Firmware Search vendor "Lenovo" for product "Ideapad 3-14are05 Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Ideapad 3-14are05 Search vendor "Lenovo" for product "Ideapad 3-14are05" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Ideapad 3-15are05 Firmware Search vendor "Lenovo" for product "Ideapad 3-15are05 Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Ideapad 3-15are05 Search vendor "Lenovo" for product "Ideapad 3-15are05" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Ideapad 3-17are05 Firmware Search vendor "Lenovo" for product "Ideapad 3-17are05 Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Ideapad 3-17are05 Search vendor "Lenovo" for product "Ideapad 3-17are05" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Ideapad 5-14alc05 Firmware Search vendor "Lenovo" for product "Ideapad 5-14alc05 Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Ideapad 5-14alc05 Search vendor "Lenovo" for product "Ideapad 5-14alc05" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Ideapad 5-14are05 Firmware Search vendor "Lenovo" for product "Ideapad 5-14are05 Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Ideapad 5-14are05 Search vendor "Lenovo" for product "Ideapad 5-14are05" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Ideapad 5-15itl05 Firmware Search vendor "Lenovo" for product "Ideapad 5-15itl05 Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Ideapad 5-15itl05 Search vendor "Lenovo" for product "Ideapad 5-15itl05" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Ideapad 5 Pro-14acn6 Firmware Search vendor "Lenovo" for product "Ideapad 5 Pro-14acn6 Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Ideapad 5 Pro-14acn6 Search vendor "Lenovo" for product "Ideapad 5 Pro-14acn6" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Ideapad 5 Pro-14itl6 Firmware Search vendor "Lenovo" for product "Ideapad 5 Pro-14itl6 Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Ideapad 5 Pro-14itl6 Search vendor "Lenovo" for product "Ideapad 5 Pro-14itl6" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Ideapad 5 Pro-16ihu6 Firmware Search vendor "Lenovo" for product "Ideapad 5 Pro-16ihu6 Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Ideapad 5 Pro-16ihu6 Search vendor "Lenovo" for product "Ideapad 5 Pro-16ihu6" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Ideapad Creator 5-15imh05 Firmware Search vendor "Lenovo" for product "Ideapad Creator 5-15imh05 Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Ideapad Creator 5-15imh05 Search vendor "Lenovo" for product "Ideapad Creator 5-15imh05" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Ideapad Gaming 3-15ach6 Firmware Search vendor "Lenovo" for product "Ideapad Gaming 3-15ach6 Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Ideapad Gaming 3-15ach6 Search vendor "Lenovo" for product "Ideapad Gaming 3-15ach6" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Ideapad Gaming 3-15arh05 Firmware Search vendor "Lenovo" for product "Ideapad Gaming 3-15arh05 Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Ideapad Gaming 3-15arh05 Search vendor "Lenovo" for product "Ideapad Gaming 3-15arh05" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Ideapad Gaming 3-15imh05 Firmware Search vendor "Lenovo" for product "Ideapad Gaming 3-15imh05 Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Ideapad Gaming 3-15imh05 Search vendor "Lenovo" for product "Ideapad Gaming 3-15imh05" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | L340-15irh Firmware Search vendor "Lenovo" for product "L340-15irh Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | L340-15irh Search vendor "Lenovo" for product "L340-15irh" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | L340-15iwl Firmware Search vendor "Lenovo" for product "L340-15iwl Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | L340-15iwl Search vendor "Lenovo" for product "L340-15iwl" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | L340-15iwl Touch Firmware Search vendor "Lenovo" for product "L340-15iwl Touch Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | L340-15iwl Touch Search vendor "Lenovo" for product "L340-15iwl Touch" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | L340-17irh Firmware Search vendor "Lenovo" for product "L340-17irh Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | L340-17irh Search vendor "Lenovo" for product "L340-17irh" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | L340-17iwl Firmware Search vendor "Lenovo" for product "L340-17iwl Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | L340-17iwl Search vendor "Lenovo" for product "L340-17iwl" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Legion Y540-15irh Firmware Search vendor "Lenovo" for product "Legion Y540-15irh Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Legion Y540-15irh Search vendor "Lenovo" for product "Legion Y540-15irh" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Legion Y540-15irh-pg0 Firmware Search vendor "Lenovo" for product "Legion Y540-15irh-pg0 Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Legion Y540-15irh-pg0 Search vendor "Lenovo" for product "Legion Y540-15irh-pg0" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Legion Y540-17irh Firmware Search vendor "Lenovo" for product "Legion Y540-17irh Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Legion Y540-17irh Search vendor "Lenovo" for product "Legion Y540-17irh" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Legion Y540-17irh-pg0 Firmware Search vendor "Lenovo" for product "Legion Y540-17irh-pg0 Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Legion Y540-17irh-pg0 Search vendor "Lenovo" for product "Legion Y540-17irh-pg0" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Legion Y545 Firmware Search vendor "Lenovo" for product "Legion Y545 Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Legion Y545 Search vendor "Lenovo" for product "Legion Y545" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Legion Y545-pg0 Firmware Search vendor "Lenovo" for product "Legion Y545-pg0 Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Legion Y545-pg0 Search vendor "Lenovo" for product "Legion Y545-pg0" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Legion Y7000-2019 Firmware Search vendor "Lenovo" for product "Legion Y7000-2019 Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Legion Y7000-2019 Search vendor "Lenovo" for product "Legion Y7000-2019" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Legion Y7000-2019-pg0 Firmware Search vendor "Lenovo" for product "Legion Y7000-2019-pg0 Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Legion Y7000-2019-pg0 Search vendor "Lenovo" for product "Legion Y7000-2019-pg0" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | S340-13iml Firmware Search vendor "Lenovo" for product "S340-13iml Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | S340-13iml Search vendor "Lenovo" for product "S340-13iml" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | S340-14api Firmware Search vendor "Lenovo" for product "S340-14api Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | S340-14api Search vendor "Lenovo" for product "S340-14api" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | S340-14iml Firmware Search vendor "Lenovo" for product "S340-14iml Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | S340-14iml Search vendor "Lenovo" for product "S340-14iml" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | S340-15api Firmware Search vendor "Lenovo" for product "S340-15api Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | S340-15api Search vendor "Lenovo" for product "S340-15api" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | S340-15api Touch Firmware Search vendor "Lenovo" for product "S340-15api Touch Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | S340-15api Touch Search vendor "Lenovo" for product "S340-15api Touch" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | S340-15iml Firmware Search vendor "Lenovo" for product "S340-15iml Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | S340-15iml Search vendor "Lenovo" for product "S340-15iml" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | S540-14iml Firmware Search vendor "Lenovo" for product "S540-14iml Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | S540-14iml Search vendor "Lenovo" for product "S540-14iml" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | S540-14iml Touch Firmware Search vendor "Lenovo" for product "S540-14iml Touch Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | S540-14iml Touch Search vendor "Lenovo" for product "S540-14iml Touch" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | S540-15iml Firmware Search vendor "Lenovo" for product "S540-15iml Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | S540-15iml Search vendor "Lenovo" for product "S540-15iml" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Slim 7-14are05 Firmware Search vendor "Lenovo" for product "Slim 7-14are05 Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Slim 7-14are05 Search vendor "Lenovo" for product "Slim 7-14are05" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Slim 7-14itl05 Firmware Search vendor "Lenovo" for product "Slim 7-14itl05 Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Slim 7-14itl05 Search vendor "Lenovo" for product "Slim 7-14itl05" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Slim 7-15iil05 Firmware Search vendor "Lenovo" for product "Slim 7-15iil05 Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Slim 7-15iil05 Search vendor "Lenovo" for product "Slim 7-15iil05" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Slim 7-15imh05 Firmware Search vendor "Lenovo" for product "Slim 7-15imh05 Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Slim 7-15imh05 Search vendor "Lenovo" for product "Slim 7-15imh05" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Slim 7-15itl05 Firmware Search vendor "Lenovo" for product "Slim 7-15itl05 Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Slim 7-15itl05 Search vendor "Lenovo" for product "Slim 7-15itl05" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Thinkbook 13x Itg Firmware Search vendor "Lenovo" for product "Thinkbook 13x Itg Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Thinkbook 13x Itg Search vendor "Lenovo" for product "Thinkbook 13x Itg" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Thinkbook 14 G3 Itl Firmware Search vendor "Lenovo" for product "Thinkbook 14 G3 Itl Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Thinkbook 14 G3 Itl Search vendor "Lenovo" for product "Thinkbook 14 G3 Itl" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Thinkbook Plus G2 Itg Firmware Search vendor "Lenovo" for product "Thinkbook Plus G2 Itg Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Thinkbook Plus G2 Itg Search vendor "Lenovo" for product "Thinkbook Plus G2 Itg" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | V14-are Firmware Search vendor "Lenovo" for product "V14-are Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | V14-are Search vendor "Lenovo" for product "V14-are" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | V140-15iwl Firmware Search vendor "Lenovo" for product "V140-15iwl Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | V140-15iwl Search vendor "Lenovo" for product "V140-15iwl" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | V340-17iwl Firmware Search vendor "Lenovo" for product "V340-17iwl Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | V340-17iwl Search vendor "Lenovo" for product "V340-17iwl" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Yoga 6-13alc6 Firmware Search vendor "Lenovo" for product "Yoga 6-13alc6 Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Yoga 6-13alc6 Search vendor "Lenovo" for product "Yoga 6-13alc6" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Yoga Creator 7-15imh05 Firmware Search vendor "Lenovo" for product "Yoga Creator 7-15imh05 Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Yoga Creator 7-15imh05 Search vendor "Lenovo" for product "Yoga Creator 7-15imh05" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Yoga Slim 7-14are05 Firmware Search vendor "Lenovo" for product "Yoga Slim 7-14are05 Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Yoga Slim 7-14are05 Search vendor "Lenovo" for product "Yoga Slim 7-14are05" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Yoga Slim 7-14iil05 Firmware Search vendor "Lenovo" for product "Yoga Slim 7-14iil05 Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Yoga Slim 7-14iil05 Search vendor "Lenovo" for product "Yoga Slim 7-14iil05" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Yoga Slim 7-14itl05 Firmware Search vendor "Lenovo" for product "Yoga Slim 7-14itl05 Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Yoga Slim 7-14itl05 Search vendor "Lenovo" for product "Yoga Slim 7-14itl05" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Yoga Slim 7-15iil05 Firmware Search vendor "Lenovo" for product "Yoga Slim 7-15iil05 Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Yoga Slim 7-15iil05 Search vendor "Lenovo" for product "Yoga Slim 7-15iil05" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Yoga Slim 7-15imh05 Firmware Search vendor "Lenovo" for product "Yoga Slim 7-15imh05 Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Yoga Slim 7-15imh05 Search vendor "Lenovo" for product "Yoga Slim 7-15imh05" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Yoga Slim 7-15itl05 Firmware Search vendor "Lenovo" for product "Yoga Slim 7-15itl05 Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Yoga Slim 7-15itl05 Search vendor "Lenovo" for product "Yoga Slim 7-15itl05" | - | - |
Safe
|
| Lenovo Search vendor "Lenovo" | Yoga Slim 7 Carbon 13itl5 Firmware Search vendor "Lenovo" for product "Yoga Slim 7 Carbon 13itl5 Firmware" | - | - |
Affected
| in | Lenovo Search vendor "Lenovo" | Yoga Slim 7 Carbon 13itl5 Search vendor "Lenovo" for product "Yoga Slim 7 Carbon 13itl5" | - | - |
Safe
|