CVE-2017-3754

Name of the Vulnerable Software and Affected Versions Lenovo notebook systems (affected versions not specified)

Description The issue concerns Lenovo brand notebook systems where write protections are not properly configured in the system BIOS. This could allow an attacker with physical or administrative access to flash the BIOS with an arbitrary image, potentially leading to the execution of malicious BIOS code.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.