CVE-2021-3972 : A potential vulnerability by a driver used during manufacturing process on some

A potential vulnerability by a driver used during manufacturing process on some consumer Lenovo Notebook devices' BIOS that was mistakenly not deactivated may allow an attacker with elevated privileges to modify secure boot setting by modifying an NVRAM variable.

Published 2022-04-22 21:15:10

Updated 2022-05-06 20:49:45

Source Lenovo Group Ltd.

View at NVD, CVE.org

Products affected by CVE-2021-3972

Lenovo » L340-15irh Firmware
Versions before (<) bgcn35ww
cpe:2.3:o:lenovo:l340-15irh_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » L340-15irh » Version: N/A
Lenovo » L340-15iwl Firmware
Versions before (<) atcn46ww
cpe:2.3:o:lenovo:l340-15iwl_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » L340-15iwl » Version: N/A
Lenovo » L340-17irh Firmware
Versions before (<) bgcn35ww
cpe:2.3:o:lenovo:l340-17irh_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » L340-17irh » Version: N/A
Lenovo » L340-17iwl Firmware
Versions before (<) atcn46ww
cpe:2.3:o:lenovo:l340-17iwl_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » L340-17iwl » Version: N/A
Lenovo » S145-14api Firmware
Versions before (<) bucn31ww
cpe:2.3:o:lenovo:s145-14api_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » S145-14api » Version: N/A
Lenovo » S145-14ast Firmware
Versions before (<) aycn26ww
cpe:2.3:o:lenovo:s145-14ast_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » S145-14ast » Version: N/A
Lenovo » S145-15api Firmware
Versions before (<) bucn31ww
cpe:2.3:o:lenovo:s145-15api_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » S145-15api » Version: N/A
Lenovo » S145-15ast Firmware
Versions before (<) aycn26ww
cpe:2.3:o:lenovo:s145-15ast_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » S145-15ast » Version: N/A
Lenovo » S540-13api Firmware
Versions before (<) cxcn34ww
cpe:2.3:o:lenovo:s540-13api_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » S540-13api » Version: N/A
Lenovo » L3 15iml05 Firmware
Versions before (<) ejcn27ww
cpe:2.3:o:lenovo:l3_15iml05_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » L3 15iml05 » Version: N/A
Lenovo » L340-15iwl Touch Firmware
Versions before (<) atcn46ww
cpe:2.3:o:lenovo:l340-15iwl_touch_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » L340-15iwl Touch » Version: N/A
Lenovo » Legion Y540-15irh Firmware
Versions before (<) bhcn44ww
cpe:2.3:o:lenovo:legion_y540-15irh_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Legion Y540-15irh » Version: N/A
Lenovo » Legion Y540-17irh Firmware
Versions before (<) bhcn44ww
cpe:2.3:o:lenovo:legion_y540-17irh_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Legion Y540-17irh » Version: N/A
Lenovo » Legion Y545 Firmware
Versions before (<) bhcn44ww
cpe:2.3:o:lenovo:legion_y545_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Legion Y545 » Version: N/A
Lenovo » S145-14igm Firmware
Versions before (<) awcn28ww
cpe:2.3:o:lenovo:s145-14igm_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » S145-14igm » Version: N/A
Lenovo » S145-15igm Firmware
Versions before (<) awcn28ww
cpe:2.3:o:lenovo:s145-15igm_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » S145-15igm » Version: N/A
Lenovo » Yoga C740-14iml Firmware
Versions before (<) bncn44ww
cpe:2.3:o:lenovo:yoga_c740-14iml_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Yoga C740-14iml » Version: N/A
Lenovo » Yoga C740-15iml Firmware
Versions before (<) bncn44ww
cpe:2.3:o:lenovo:yoga_c740-15iml_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Yoga C740-15iml » Version: N/A
Lenovo » Ideapad 3-14ada05 Firmware
Versions before (<) e8cn33ww
cpe:2.3:o:lenovo:ideapad_3-14ada05_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Ideapad 3-14ada05 » Version: N/A
Lenovo » Ideapad 3-14ada6 Firmware
Versions before (<) hbcn21ww
cpe:2.3:o:lenovo:ideapad_3-14ada6_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Ideapad 3-14ada6 » Version: N/A
Lenovo » Ideapad 3-14alc6 Firmware
Versions before (<) glcn43ww
cpe:2.3:o:lenovo:ideapad_3-14alc6_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Ideapad 3-14alc6 » Version: N/A
Lenovo » Ideapad 3-14are05 Firmware
Versions before (<) dzcn42ww
cpe:2.3:o:lenovo:ideapad_3-14are05_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Ideapad 3-14are05 » Version: N/A
Lenovo » Ideapad 3-15ada6 Firmware
Versions before (<) hbcn21ww
cpe:2.3:o:lenovo:ideapad_3-15ada6_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Ideapad 3-15ada6 » Version: N/A
Lenovo » Ideapad 3-15alc6 Firmware
Versions before (<) glcn43ww
cpe:2.3:o:lenovo:ideapad_3-15alc6_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Ideapad 3-15alc6 » Version: N/A
Lenovo » Ideapad 3-15are05 Firmware
Versions before (<) dzcn42ww
cpe:2.3:o:lenovo:ideapad_3-15are05_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Ideapad 3-15are05 » Version: N/A
Lenovo » Ideapad 3-15igl05 Firmware
Versions before (<) dvcn23ww
cpe:2.3:o:lenovo:ideapad_3-15igl05_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Ideapad 3-15igl05 » Version: N/A
Lenovo » Ideapad 3-17ada05 Firmware
Versions before (<) e8cn33ww
cpe:2.3:o:lenovo:ideapad_3-17ada05_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Ideapad 3-17ada05 » Version: N/A
Lenovo » Ideapad 3-17ada6 Firmware
Versions before (<) hbcn21ww
cpe:2.3:o:lenovo:ideapad_3-17ada6_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Ideapad 3-17ada6 » Version: N/A
Lenovo » Ideapad 3-17alc6 Firmware
Versions before (<) glcn43ww
cpe:2.3:o:lenovo:ideapad_3-17alc6_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Ideapad 3-17alc6 » Version: N/A
Lenovo » Ideapad 3-17are05 Firmware
Versions before (<) dzcn42ww
cpe:2.3:o:lenovo:ideapad_3-17are05_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Ideapad 3-17are05 » Version: N/A
Lenovo » Ideapad 3-17iil05 Firmware
Versions before (<) emcn52ww
cpe:2.3:o:lenovo:ideapad_3-17iil05_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Ideapad 3-17iil05 » Version: N/A
Lenovo » Ideapad 3-17itl6 Firmware
Versions before (<) ggcn33ww
cpe:2.3:o:lenovo:ideapad_3-17itl6_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Ideapad 3-17itl6 » Version: N/A
Lenovo » Ideapad 3-15ada05 Firmware
Versions before (<) e8cn33ww
cpe:2.3:o:lenovo:ideapad_3-15ada05_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Ideapad 3-15ada05 » Version: N/A
Lenovo » L3-15itl6 Firmware
Versions before (<) gfcn23ww
cpe:2.3:o:lenovo:l3-15itl6_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » L3-15itl6 » Version: N/A
Lenovo » Legion 5 Pro-16ach6 Firmware
Versions before (<) hhcn25ww
cpe:2.3:o:lenovo:legion_5_pro-16ach6_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Legion 5 Pro-16ach6 » Version: N/A
Lenovo » Legion 5 Pro-16ach6h Firmware
Versions before (<) gkcn51ww
cpe:2.3:o:lenovo:legion_5_pro-16ach6h_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Legion 5 Pro-16ach6h » Version: N/A
Lenovo » Legion 5 Pro-16ith6 Firmware
Versions before (<) h1cn46ww
cpe:2.3:o:lenovo:legion_5_pro-16ith6_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Legion 5 Pro-16ith6 » Version: N/A
Lenovo » Legion 5 Pro-16ith6h Firmware
Versions before (<) h1cn46ww
cpe:2.3:o:lenovo:legion_5_pro-16ith6h_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Legion 5 Pro-16ith6h » Version: N/A
Lenovo » Legion 5-15ach6 Firmware
Versions before (<) hhcn25ww
cpe:2.3:o:lenovo:legion_5-15ach6_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Legion 5-15ach6 » Version: N/A
Lenovo » Legion 5-15ach6a Firmware
Versions before (<) g9cn28ww
cpe:2.3:o:lenovo:legion_5-15ach6a_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Legion 5-15ach6a » Version: N/A
Lenovo » Legion 5-15ach6h Firmware
Versions before (<) gkcn51ww
cpe:2.3:o:lenovo:legion_5-15ach6h_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Legion 5-15ach6h » Version: N/A
Lenovo » Legion 5-15imh6 Firmware
Versions before (<) g8cn19ww
cpe:2.3:o:lenovo:legion_5-15imh6_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Legion 5-15imh6 » Version: N/A
Lenovo » Legion 5-15ith6 Firmware
Versions before (<) h1cn46ww
cpe:2.3:o:lenovo:legion_5-15ith6_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Legion 5-15ith6 » Version: N/A
Lenovo » Legion 5-15ith6h Firmware
Versions before (<) h1cn46ww
cpe:2.3:o:lenovo:legion_5-15ith6h_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Legion 5-15ith6h » Version: N/A
Lenovo » Legion 5-17ach6 Firmware
Versions before (<) hhcn25ww
cpe:2.3:o:lenovo:legion_5-17ach6_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Legion 5-17ach6 » Version: N/A
Lenovo » Legion 5-17ach6h Firmware
Versions before (<) gkcn51ww
cpe:2.3:o:lenovo:legion_5-17ach6h_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Legion 5-17ach6h » Version: N/A
Lenovo » Legion 5-17ith6 Firmware
Versions before (<) h1cn46ww
cpe:2.3:o:lenovo:legion_5-17ith6_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Legion 5-17ith6 » Version: N/A
Lenovo » Legion 5-17ith6h Firmware
Versions before (<) h1cn46ww
cpe:2.3:o:lenovo:legion_5-17ith6h_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Legion 5-17ith6h » Version: N/A
Lenovo » Legion 7-16achg6 Firmware
Versions before (<) gkcn51ww
cpe:2.3:o:lenovo:legion_7-16achg6_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Legion 7-16achg6 » Version: N/A
Lenovo » Legion 7-16ithg6 Firmware
Versions before (<) gkcn51ww
cpe:2.3:o:lenovo:legion_7-16ithg6_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Legion 7-16ithg6 » Version: N/A
Lenovo » Legion S7-15ach6 Firmware
Versions before (<) hacn35ww
cpe:2.3:o:lenovo:legion_s7-15ach6_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Legion S7-15ach6 » Version: N/A
Lenovo » Legion Y540-15irh-pg0 Firmware
Versions before (<) bhcn44ww
cpe:2.3:o:lenovo:legion_y540-15irh-pg0_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Legion Y540-15irh-pg0 » Version: N/A
Lenovo » Legion Y540-17irh-pg0 Firmware
Versions before (<) bhcn44ww
cpe:2.3:o:lenovo:legion_y540-17irh-pg0_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Legion Y540-17irh-pg0 » Version: N/A
Lenovo » Legion Y545-pg0 Firmware
Versions before (<) bhcn44ww
cpe:2.3:o:lenovo:legion_y545-pg0_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Legion Y545-pg0 » Version: N/A
Lenovo » Legion Y7000-2019 Firmware
Versions before (<) bhcn44ww
cpe:2.3:o:lenovo:legion_y7000-2019_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Legion Y7000-2019 » Version: N/A
Lenovo » Legion Y7000-2019-pg0 Firmware
Versions before (<) bhcn44ww
cpe:2.3:o:lenovo:legion_y7000-2019-pg0_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Legion Y7000-2019-pg0 » Version: N/A
Lenovo » S14 G2 Itl Firmware
Versions before (<) ggcn33ww
cpe:2.3:o:lenovo:s14_g2_itl_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » S14 G2 Itl » Version: N/A
Lenovo » S145-14iil Firmware
Versions before (<) dkcn54ww
cpe:2.3:o:lenovo:s145-14iil_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » S145-14iil » Version: N/A
Lenovo » S145-15iil Firmware
Versions before (<) dkcn54ww
cpe:2.3:o:lenovo:s145-15iil_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » S145-15iil » Version: N/A
Lenovo » S540-13iml Firmware » Version: N/A
cpe:2.3:o:lenovo:s540-13iml_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » S540-13iml » Version: N/A
Lenovo » Slim 7 Pro-14ihu5 Firmware » Version: N/A
cpe:2.3:o:lenovo:slim_7_pro-14ihu5_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Slim 7 Pro-14ihu5 » Version: N/A
Lenovo » Slim 9-14itl05 Firmware » Version: N/A
cpe:2.3:o:lenovo:slim_9-14itl05_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Slim 9-14itl05 » Version: N/A
Lenovo » V14 G1-iml Firmware
Versions before (<) dxcn41ww
cpe:2.3:o:lenovo:v14_g1-iml_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » V14 G1-iml » Version: N/A
Lenovo » V14 G2-acl Firmware
Versions before (<) glcn43ww
cpe:2.3:o:lenovo:v14_g2-acl_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » V14 G2-acl » Version: N/A
Lenovo » V14 G2-itl Firmware
Versions before (<) ggcn33ww
cpe:2.3:o:lenovo:v14_g2-itl_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » V14 G2-itl » Version: N/A
Lenovo » V14-ada Firmware
Versions before (<) e8cn33ww
cpe:2.3:o:lenovo:v14-ada_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » V14-ada » Version: N/A
Lenovo » V14-are Firmware
Versions before (<) dzcn42ww
cpe:2.3:o:lenovo:v14-are_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » V14-are » Version: N/A
Lenovo » V14-igl Firmware
Versions before (<) dvcn23ww
cpe:2.3:o:lenovo:v14-igl_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » V14-igl » Version: N/A
Lenovo » V14-iil Firmware
Versions before (<) dkcn54ww
cpe:2.3:o:lenovo:v14-iil_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » V14-iil » Version: N/A
Lenovo » V140-15iwl Firmware
Versions before (<) atcn46ww
cpe:2.3:o:lenovo:v140-15iwl_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » V140-15iwl » Version: N/A
Lenovo » V15 G1-iml Firmware
Versions before (<) dxcn41ww
cpe:2.3:o:lenovo:v15_g1-iml_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » V15 G1-iml » Version: N/A
Lenovo » V15 G2-alc Firmware
Versions before (<) glcn43ww
cpe:2.3:o:lenovo:v15_g2-alc_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » V15 G2-alc » Version: N/A
Lenovo » V15 G2-itl Firmware
Versions before (<) ggcn33ww
cpe:2.3:o:lenovo:v15_g2-itl_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » V15 G2-itl » Version: N/A
Lenovo » V15-ada Firmware
Versions before (<) e8cn33ww
cpe:2.3:o:lenovo:v15-ada_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » V15-ada » Version: N/A
Lenovo » V15-igl Firmware
Versions before (<) dvcn23ww
cpe:2.3:o:lenovo:v15-igl_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » V15-igl » Version: N/A
Lenovo » V15-iil Firmware
Versions before (<) dkcn54ww
cpe:2.3:o:lenovo:v15-iil_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » V15-iil » Version: N/A
Lenovo » V17 G2-itl Firmware
Versions before (<) ggcn33ww
cpe:2.3:o:lenovo:v17_g2-itl_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » V17 G2-itl » Version: N/A
Lenovo » V17-iil Firmware
Versions before (<) emcn52ww
cpe:2.3:o:lenovo:v17-iil_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » V17-iil » Version: N/A
Lenovo » V340-17iwl Firmware
Versions before (<) atcn46ww
cpe:2.3:o:lenovo:v340-17iwl_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » V340-17iwl » Version: N/A
Lenovo » Yoga 7-14acn6 Firmware
Versions before (<) h9cn26ww
cpe:2.3:o:lenovo:yoga_7-14acn6_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Yoga 7-14acn6 » Version: N/A
Lenovo » Yoga C940-14iil Firmware » Version: N/A
cpe:2.3:o:lenovo:yoga_c940-14iil_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Yoga C940-14iil » Version: N/A
Lenovo » Yoga Slim 7 Pro-14ach5 D Firmware
Versions before (<) hecn24ww
cpe:2.3:o:lenovo:yoga_slim_7_pro-14ach5_d_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Yoga Slim 7 Pro-14ach5 D » Version: N/A
Lenovo » Yoga Slim 7 Pro-14ach5 Firmware
Versions before (<) gzcn27ww
cpe:2.3:o:lenovo:yoga_slim_7_pro-14ach5_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Yoga Slim 7 Pro-14ach5 » Version: N/A
Lenovo » Yoga Slim 7 Pro-14ach5 O Firmware
Versions before (<) gzcn27ww
cpe:2.3:o:lenovo:yoga_slim_7_pro-14ach5_o_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Yoga Slim 7 Pro-14ach5 O » Version: N/A
Lenovo » Yoga Slim 7 Pro-14ach5 Od Firmware
Versions before (<) hecn24ww
cpe:2.3:o:lenovo:yoga_slim_7_pro-14ach5_od_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Yoga Slim 7 Pro-14ach5 Od » Version: N/A
Lenovo » Yoga Slim 7 Pro-14arh5 Firmware
Versions before (<) g7cn21ww
cpe:2.3:o:lenovo:yoga_slim_7_pro-14arh5_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Yoga Slim 7 Pro-14arh5 » Version: N/A
Lenovo » Yoga Slim 7 Pro-14ihu5 Firmware » Version: N/A
cpe:2.3:o:lenovo:yoga_slim_7_pro-14ihu5_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Yoga Slim 7 Pro-14ihu5 » Version: N/A
Lenovo » Yoga Slim 7 Pro-14ihu5 O Firmware » Version: N/A
cpe:2.3:o:lenovo:yoga_slim_7_pro-14ihu5_o_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Yoga Slim 7 Pro-14ihu5 O » Version: N/A
Lenovo » Yoga Slim 7 Pro-14itl5 Firmware » Version: N/A
cpe:2.3:o:lenovo:yoga_slim_7_pro-14itl5_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Yoga Slim 7 Pro-14itl5 » Version: N/A
Lenovo » Yoga Slim 9-14itl05 Firmware » Version: N/A
cpe:2.3:o:lenovo:yoga_slim_9-14itl05_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Yoga Slim 9-14itl05 » Version: N/A
Lenovo » Ideapad 3-14iil05 Firmware
Versions before (<) dvcn23ww
cpe:2.3:o:lenovo:ideapad_3-14iil05_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Ideapad 3-14iil05 » Version: N/A
Lenovo » Ideapad 3-14igl05 Firmware
Versions before (<) emcn52ww
cpe:2.3:o:lenovo:ideapad_3-14igl05_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Ideapad 3-14igl05 » Version: N/A
Lenovo » Ideapad 3-14iml05 Firmware
Versions before (<) dxcn41ww
cpe:2.3:o:lenovo:ideapad_3-14iml05_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Ideapad 3-14iml05 » Version: N/A
Lenovo » Ideapad 3-14itl05 Firmware
Versions before (<) gccn26ww
cpe:2.3:o:lenovo:ideapad_3-14itl05_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Ideapad 3-14itl05 » Version: N/A
Lenovo » Ideapad 3-14itl6 Firmware
Versions before (<) ggcn33ww
cpe:2.3:o:lenovo:ideapad_3-14itl6_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Ideapad 3-14itl6 » Version: N/A
Lenovo » Ideapad 3-15iil05 Firmware
Versions before (<) emcn52ww
cpe:2.3:o:lenovo:ideapad_3-15iil05_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Ideapad 3-15iil05 » Version: N/A
Lenovo » Ideapad 3-15iml05 Firmware
Versions before (<) dxcn41ww
cpe:2.3:o:lenovo:ideapad_3-15iml05_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Ideapad 3-15iml05 » Version: N/A
Lenovo » Ideapad 3-15itl05 Firmware
Versions before (<) gccn26ww
cpe:2.3:o:lenovo:ideapad_3-15itl05_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Ideapad 3-15itl05 » Version: N/A
Lenovo » Ideapad 3-15itl6 Firmware
Versions before (<) ggcn33ww
cpe:2.3:o:lenovo:ideapad_3-15itl6_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Ideapad 3-15itl6 » Version: N/A
Lenovo » Ideapad 3-17iml05 Firmware
Versions before (<) dxcn41ww
cpe:2.3:o:lenovo:ideapad_3-17iml05_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Ideapad 3-17iml05 » Version: N/A
Lenovo » Ideapad 5-15are05 Firmware
Versions before (<) e7cn44ww
cpe:2.3:o:lenovo:ideapad_5-15are05_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Ideapad 5-15are05 » Version: N/A
Lenovo » Ideapad 5-15iil05 Firmware
Versions before (<) dpcn54ww
cpe:2.3:o:lenovo:ideapad_5-15iil05_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Ideapad 5-15iil05 » Version: N/A
Lenovo » Ideapad Creator 5-15imh05 Firmware
Versions before (<) egcn36ww
cpe:2.3:o:lenovo:ideapad_creator_5-15imh05_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Ideapad Creator 5-15imh05 » Version: N/A
Lenovo » Ideapad Gaming 3-15arh05 Firmware
Versions before (<) fccn17ww
cpe:2.3:o:lenovo:ideapad_gaming_3-15arh05_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Ideapad Gaming 3-15arh05 » Version: N/A
Lenovo » Ideapad Gaming 3-15imh05 Firmware
Versions before (<) egcn36ww
cpe:2.3:o:lenovo:ideapad_gaming_3-15imh05_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Ideapad Gaming 3-15imh05 » Version: N/A

Exploit prediction scoring system (EPSS) score for CVE-2021-3972

EPSS FAQ

12.63%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 93 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2021-3972

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
4.6	MEDIUM	AV:L/AC:L/Au:N/C:P/I:P/A:P	3.9	6.4	NIST
Access Vector: Local Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial
6.7	MEDIUM	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H	0.8	5.9	NIST
Attack Vector: Local Attack Complexity: Low Privileges Required: High User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: High
6.7	MEDIUM	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H	0.8	5.9	Lenovo Group Ltd.
Attack Vector: Local Attack Complexity: Low Privileges Required: High User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: High

CWE ids for CVE-2021-3972

CWE-489 Active Debug Code

The product is deployed to unauthorized actors with debugging code still enabled or active, which can create unintended entry points or expose sensitive information.

Assigned by: psirt@lenovo.com (Secondary)

References for CVE-2021-3972

https://support.lenovo.com/us/en/product_security/LEN-73440

Lenovo Notebook BIOS Vulnerabilities - Lenovo Support NL
Vendor Advisory

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2021-3972

Products affected by CVE-2021-3972

Exploit prediction scoring system (EPSS) score for CVE-2021-3972

CVSS scores for CVE-2021-3972

CWE ids for CVE-2021-3972

References for CVE-2021-3972