Description

A vulnerability was reported in BIOS for ThinkPad P14s Gen 2, P15s Gen 2, T14 Gen 2, and T15 Gen 2 that could cause the system to recover to insecure settings if the BIOS becomes corrupt.

Related CPE's

o

lenovo

thinkpad_t15_gen_2_firmware

-

Vulnerable

h

lenovo

thinkpad_t15_gen_2

-

o

lenovo

thinkpad_p14s_gen_2_firmware

-

Vulnerable

h

lenovo

thinkpad_p14s_gen_2

-

o

lenovo

thinkpad_p15s_gen_2_firmware

-

Vulnerable

h

lenovo

thinkpad_p15s_gen_2

-

o

lenovo

thinkpad_t14_gen_2_firmware

-

Vulnerable

h

lenovo

thinkpad_t14_gen_2

-

References

https://support.lenovo.com/us/en/product_security/LEN-134879

Vendor Advisory

Weaknesses

[email protected]

Primary
CWE-636

CVSS impact metrics

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.8 · High

  • CVSS V3.1

  • CVSS V3.0

  • CVSS V2.0

Information

Source identifier

[email protected]

Vulnerability status

Analyzed

Published

2023-08-17T17:15:10.403

1 year ago

Last modified

2023-08-24T20:29:39.293

1 year ago