PT-2022-11542 · Lenovo · Lenovo Desktop+2
Published
2022-04-22
·
Updated
2022-08-09
·
CVE-2021-4210
CVSS v2.0
7.2
High
| Vector | AV:L/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Lenovo Desktop, ThinkStation, and ThinkEdge models (affected versions not specified)
Description
A potential issue in the SMI callback function used in the NVME driver may allow an attacker with local access and elevated privileges to execute arbitrary code. This issue affects some Lenovo Desktop, ThinkStation, and ThinkEdge models.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
RCE
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Lenovo Desktop
Thinkedge
Thinkstation