Skip to main content

Thinkpad X380 Yoga Firmware CVE-2021-3599

MEDIUM
Improper Input Validation (CWE-20)
2021-11-12 psirt@lenovo.com
RCE Thinkpad X380 Yoga Firmware Thinkpad X1 Fold Gen 1 Firmware Thinkpad Yoga 260 Firmware Thinkpad Yoga 11E 3Rd Gen Firmware Thinkpad Yoga 15 Firmware Thinkpad Yoga 370 Firmware Thinkpad X12 Detachable Gen 1 Firmware Thinkpad X390 Firmware Thinkpad Yoga 11E 4Th Gen Firmware Thinkpad Yoga 11E 5Th Gen Firmware Thinkpad X250 Firmware Thinkpad X260 Firmware Thinkpad X390 Yoga Firmware Thinkpad X280 Firmware Thinkpad X1 Titanium Firmware Thinkpad X270 Firmware Thinkpad X1 Carbon 5Th Gen Kabylake Firmware Thinkpad X13 Gen 1 Firmware Thinkpad X13 Gen 2 Firmware Thinkpad X13 Yoga Gen 1 Firmware Thinkpad X13 Yoga Gen 2 Firmware Thinkpad X1 Carbon 5Th Gen Skylake Firmware Thinkpad X1 Yoga 1St Gen Firmware Thinkpad X1 Yoga 3Rd Gen Firmware Thinkpad X1 Yoga 4Th Gen Firmware Thinkpad X1 Yoga Gen 5 Firmware Thinkpad X1 Carbon 4Th Gen Firmware Thinkpad 10 Firmware Thinkpad X1 Nano Gen 1 Firmware Thinkpad X1 Extreme Firmware Thinkpad X1 Extreme 2Nd Firmware Thinkpad X1 Extreme Gen 3 Firmware Thinkpad T460S Firmware Thinkpad S2 Gen 6 Firmware Thinkpad X1 Carbon Gen 6 Firmware Thinkpad X1 Carbon Gen 7 Firmware Thinkpad X1 Carbon Gen 8 Firmware Thinkpad T560 Firmware Thinkpad T460P Firmware Thinkpad W550S Firmware Thinkpad T590 Firmware Thinkpad T570 Firmware Thinkpad S2 Yoga Gen 6 Firmware Thinkpad T480 Firmware Thinkpad X1 Tablet Firmware Thinkpad T550 Firmware Thinkpad X1 Carbon 3Rd Gen Firmware Thinkpad X1 Tablet Gen 2 Firmware Thinkpad X1 Tablet Gen 3 Firmware Thinkpad T580 Firmware Thinkpad T480S Firmware Thinkpad T15 Firmware Thinkpad T460 Firmware Thinkpad T470 Firmware Thinkpad T490 Firmware Thinkpad T490S Firmware Thinkpad T14S Gen 2 Firmware Thinkpad T14S Firmware Thinkpad T470P Firmware Thinkpad T470S Firmware Thinkpad P71 Firmware Thinkpad T440P Firmware Thinkpad T15 Gen 2 Firmware Thinkpad T15P Gen 1 Firmware Thinkpad P70 Firmware Thinkpad T15G Gen 1 Firmware Thinkpad T14 Gen 1 Firmware Thinkpad T14 Gen 2 Firmware Thinkpad P73 Firmware Thinkpad S540 Firmware Thinkpad P72 Firmware Thinkpad L380 Firmware Thinkpad S5 2Nd Gen Firmware Thinkpad P15V Gen 1 Firmware Thinkpad P53 Firmware Thinkpad P53S Firmware Thinkpad P43S Firmware Thinkpad P51 Firmware Thinkpad P51S Firmware Thinkpad P50 Firmware Thinkpad P52 Firmware Thinkpad P52S Firmware Thinkpad P50S Firmware Thinkpad L570 Firmware Thinkpad P17 Gen 1 Firmware Thinkpad L580 Firmware Thinkpad P14S Gen 1 Firmware Thinkpad P14S Gen 2 Firmware Thinkpad P15 Gen 1 Firmware Thinkpad P15S Gen 1 Firmware Thinkpad P15S Gen 2 Firmware Thinkpad L590 Firmware Thinkpad L380 Yoga Firmware Thinkpad L490 Firmware Thinkpad L560 Firmware Thinkpad P1 Firmware Thinkpad P1 Gen 2 Firmware Thinkpad P1 Gen 3 Firmware Thinkpad L480 Firmware Thinkpad L470 Firmware Thinkpad L460 Firmware Thinkpad E490 Firmware Thinkpad Helix Firmware Thinkpad L390 Firmware Thinkpad L390 Yoga Firmware Thinkpad E15 Gen 3 Firmware Thinkpad L14 Firmware Thinkpad L13 Gen 2 Firmware Thinkpad L15 Firmware Thinkpad L15 Gen 2 Firmware Thinkpad L13 Firmware Thinkpad E14 Gen 3 Firmware Thinkpad E590 Firmware Thinkpad E580 Firmware Thinkpad L13 Yoga Gen 2 Firmware Thinkpad E570 Firmware Thinkpad L13 Yoga Firmware Thinkpad 11E 3Rd Gen Firmware Thinkpad E480 Firmware Thinkpad E14 Firmware Thinkpad E470 Firmware Thinkpad E15 Firmware Thinkpad E15 Gen 2 Firmware Thinkpad 25 Firmware Thinkpad E14 Gen 2 Firmware Thinkpad 13 Gen 2 Firmware Thinkpad 11E 4Th Gen Firmware Thinkpad 11E Yoga Gen 6 Firmware Ideapad S940 14Iwl Firmware Ideapad Yoga S940 14Iwl Firmware V330 15Isk Firmware V330 15Ikb Firmware V130 15Igm Firmware
6.7
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
6.7 MEDIUM
AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Local
Attack Complexity
Low
Privileges Required
High
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

1
CVE Published
Nov 12, 2021 - 22:15 nvd
MEDIUM 6.7

DescriptionNVD

A potential vulnerability in the SMI callback function used to access flash device in some ThinkPad models may allow an attacker with local access and elevated privileges to execute arbitrary code.

AnalysisAI

A potential vulnerability in the SMI callback function used to access flash device in some ThinkPad models may allow an attacker with local access and elevated privileges to execute arbitrary code. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity.

Technical ContextAI

This vulnerability is classified under CWE-20. A potential vulnerability in the SMI callback function used to access flash device in some ThinkPad models may allow an attacker with local access and elevated privileges to execute arbitrary code. Affected products include: Lenovo Thinkpad X380 Yoga Firmware, Lenovo Thinkpad X1 Fold Gen 1 Firmware, Lenovo Thinkpad Yoga 260 Firmware, Lenovo Thinkpad Yoga 11E 3Rd Gen Firmware, Lenovo Thinkpad Yoga 15 Firmware.

RemediationAI

A vendor patch is available. Apply the latest security update as soon as possible. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.

CVE-2019-6188 CRITICAL
9.8 Nov 12

The BIOS tamper detection mechanism was not triggered in Lenovo ThinkPad T460p, BIOS versions up to R07ET90W, and T470p,

CVE-2020-8320 MEDIUM
6.8 Jun 09

An internal shell was included in BIOS image in some ThinkPad models that could allow escalation of privilege. Rated med

CVE-2018-9062 MEDIUM
6.8 Jul 19

In some Lenovo ThinkPad products, one BIOS region is not properly included in the checks, allowing injection of arbitrar

CVE-2021-3843 MEDIUM
6.7 Nov 12

A potential vulnerability in the SMI function to access EEPROM in some ThinkPad models may allow an attacker with local

CVE-2020-8323 MEDIUM
6.7 Jun 09

A potential vulnerability in the SMI callback function used in the Legacy SD driver in some Lenovo ThinkPad, ThinkStatio

CVE-2019-10724 MEDIUM
6.5 Aug 29

There is a vulnerability with the Dolby DAX2 API system services in which a low-privileged user can terminate arbitrary

CVE-2019-6172 MEDIUM
6.4 Nov 12

A potential vulnerability in the SMI callback function used in Legacy USB driver using passed parameter without sufficie

CVE-2019-6170 MEDIUM
6.4 Nov 12

A potential vulnerability in the SMI callback function used in the Legacy USB driver using boot services structure in ru

CVE-2021-3786 MEDIUM
5.5 Nov 12

A potential vulnerability in the SMI callback function used in CSME configuration of some Lenovo Notebook and ThinkPad s

CVE-2021-3718 MEDIUM
4.6 Nov 12

A denial of service vulnerability was reported in some ThinkPad models that could cause a system to crash when the Enhan

CVE-2019-6156 LOW
3.3 Apr 10

In Lenovo systems, SMM BIOS Write Protection is used to prevent writes to SPI Flash. Rated low severity (CVSS 3.3), this

Share

CVE-2021-3599 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy