// For flags

CVE-2022-3728

 

Severity Score

6.8
*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

Track
*SSVC
Descriptions

A vulnerability was reported in ThinkPad T14s Gen 3 and X13 Gen3 that could cause the BIOS tamper detection mechanism to not trigger under specific circumstances which could allow unauthorized access.

Se informó una vulnerabilidad en ThinkPad T14s Gen 3 y X13 Gen3 que podría causar que el mecanismo de detección de manipulación del BIOS no se active en circunstancias específicas que podrían permitir el acceso no autorizado.

*Credits: Lenovo thanks Zoltan Harmath for reporting this vulnerability.
CVSS Scores
Attack Vector
Physical
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High
Attack Vector
Physical
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
High
Availability
High
* Common Vulnerability Scoring System
SSVC
  • Decision:Track
Exploitation
None
Automatable
No
Tech. Impact
Partial
* Organization's Worst-case Scenario
Timeline
  • 2022-10-27 CVE Reserved
  • 2023-10-09 CVE Published
  • 2024-09-19 CVE Updated
  • 2024-11-10 EPSS Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
  • CWE-1263: Improper Physical Access Control
CAPEC
References (1)
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Lenovo
Search vendor "Lenovo"
Thinkpad T14s Gen 3 Firmware
Search vendor "Lenovo" for product "Thinkpad T14s Gen 3 Firmware"
< 1.30
Search vendor "Lenovo" for product "Thinkpad T14s Gen 3 Firmware" and version " < 1.30"
-
Affected
in Lenovo
Search vendor "Lenovo"
Thinkpad T14s Gen 3
Search vendor "Lenovo" for product "Thinkpad T14s Gen 3"
--
Safe
Lenovo
Search vendor "Lenovo"
Thinkpad X13 Gen 3 Firmware
Search vendor "Lenovo" for product "Thinkpad X13 Gen 3 Firmware"
< 1.30
Search vendor "Lenovo" for product "Thinkpad X13 Gen 3 Firmware" and version " < 1.30"
-
Affected
in Lenovo
Search vendor "Lenovo"
Thinkpad X13 Gen 3
Search vendor "Lenovo" for product "Thinkpad X13 Gen 3"
--
Safe