var-201708-0554
Vulnerability from variot
A vulnerability has been identified in some Lenovo products that use UEFI (BIOS) code developed by American Megatrends, Inc. (AMI). With this vulnerability, conditions exist where an attacker with administrative privileges or physical access to a system may be able to run specially crafted code that can allow them to bypass system protections such as Device Guard and Hyper-V. American Megatrends, Inc. LenovoIdeaCentre300-20ISH and so on are all products of China Lenovo. The LenovoIdeaCentre300-20ISH is a desktop computer; the ThinkServerRD540 is a server device. BIOSSMIHandler is one of the management information structure handlers. A security vulnerability exists in BIOSSMIHandler in several Lenovo products due to a program failing to perform input validation. A local attacker can exploit this issue to execute arbitrary code in the context of the user running the affected application. Lenovo IdeaCentre 300-20ISH, etc. There is a security vulnerability in the BIOS SMI Handler in several Lenovo products. The following versions are affected: Lenovo IdeaCentre 300-20ISH; Lenovo M4550 ID; ThinkCentre E73s; ThinkCentre M4500k; ThinkServer RD540; ThinkServer TS140; Thinkstation P510; Thinkstation P910, etc
Show details on source website{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-201708-0554",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "thinkstation d30 \\",
"scope": "eq",
"trust": 2.0,
"vendor": "lenovo",
"version": "a3kt57a"
},
{
"model": "thinkstation c30 \\",
"scope": "eq",
"trust": 2.0,
"vendor": "lenovo",
"version": "a1kt57a"
},
{
"model": "thinkstation s30 \\",
"scope": "eq",
"trust": 2.0,
"vendor": "lenovo",
"version": "a2kt54a"
},
{
"model": "thinkstation c30",
"scope": null,
"trust": 1.6,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkstation d30",
"scope": null,
"trust": 1.6,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkstation s30",
"scope": null,
"trust": 1.6,
"vendor": "lenovo",
"version": null
},
{
"model": "ideacentre 300s-11ish",
"scope": "eq",
"trust": 1.6,
"vendor": "lenovo",
"version": null
},
{
"model": "ideacentre 700",
"scope": "eq",
"trust": 1.6,
"vendor": "lenovo",
"version": null
},
{
"model": "s500",
"scope": "eq",
"trust": 1.6,
"vendor": "lenovo",
"version": "m0kkt24a"
},
{
"model": "ideacentre 510s-08ish",
"scope": "eq",
"trust": 1.6,
"vendor": "lenovo",
"version": null
},
{
"model": "63",
"scope": "eq",
"trust": 1.6,
"vendor": "lenovo",
"version": "fckt78a"
},
{
"model": "m4500",
"scope": "eq",
"trust": 1.6,
"vendor": "lenovo",
"version": "fckt78a"
},
{
"model": "m4550 id",
"scope": "eq",
"trust": 1.6,
"vendor": "lenovo",
"version": "fckt78a"
},
{
"model": "ideacentre 300-20ish",
"scope": "eq",
"trust": 1.6,
"vendor": "lenovo",
"version": null
},
{
"model": "m4500 id",
"scope": "eq",
"trust": 1.6,
"vendor": "lenovo",
"version": "fckt78a"
},
{
"model": "h50-30g",
"scope": "eq",
"trust": 1.6,
"vendor": "lenovo",
"version": "fckt78a"
},
{
"model": "ideacentre 300-20ish",
"scope": null,
"trust": 1.4,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre e73s",
"scope": null,
"trust": 1.4,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre m4500k",
"scope": null,
"trust": 1.4,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkserver rd540",
"scope": null,
"trust": 1.4,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkserver ts140",
"scope": null,
"trust": 1.4,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkstation p510",
"scope": null,
"trust": 1.4,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkstation p910",
"scope": null,
"trust": 1.4,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkserver ts550",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre m710t\\/s",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre e93",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "fbktc5a"
},
{
"model": "thinkcentre m73z \\",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "fgkt46a"
},
{
"model": "thinkserver rd640",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "a1tsb5a"
},
{
"model": "thinkcentre m83",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "fbktcga"
},
{
"model": "thinkcentre m79",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "m0lkt12a"
},
{
"model": "thinkstation p910",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkserver td340",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "a3tsb5a"
},
{
"model": "thinkstation p710",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre m93",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "fbktc5a"
},
{
"model": "thinkcentre m910x",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre m6600",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "fwkt39a"
},
{
"model": "yangtian afh81",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "fckt80a"
},
{
"model": "thinkcentre e74",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "m05kt54a"
},
{
"model": "yangtian mc h110",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "m05kt61a"
},
{
"model": "yangtian afq150",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "fwkt57a"
},
{
"model": "thinkcentre m700z",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "fvkt48a"
},
{
"model": "thinkcentre m8250z",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "fgkt46a"
},
{
"model": "thinkcentre m610",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": null
},
{
"model": "yangtian mc h81",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "fckt80a"
},
{
"model": "thinkserver rd440",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "a0tsb5a"
},
{
"model": "thinkcentre e73",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "fckt78a"
},
{
"model": "thinkcentre m8350z",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "fvkt42a"
},
{
"model": "ideacentre 510s-23isu",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "o2ekt24a"
},
{
"model": "thinkserver rd340",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": null
},
{
"model": "yangtian mc carrizo-l",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre m4500k",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "fckt78a"
},
{
"model": "thinkcentre m9500z",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "fukt44a"
},
{
"model": "thinkcentre m7300z",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "fvkt42a"
},
{
"model": "v320-15iap",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre m92",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "9skt95a"
},
{
"model": "thinkcentre m72e",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "f1kt71a"
},
{
"model": "thinkstation p500",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "a4kt86a"
},
{
"model": "thinkcentre m910q",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkstation p310",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "fwkt57a"
},
{
"model": "thinkcentre e74s",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "m05kt54a"
},
{
"model": "yangtian s800",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "ffkt43a"
},
{
"model": "thinkcentre m4500q",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "fhkt66a"
},
{
"model": "thinkcentre m7200z",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "fgkt46a"
},
{
"model": "thinkcentre m6600q",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "fwkt39a"
},
{
"model": "thinkstation e32",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "fbktc6a"
},
{
"model": "thinkcentre m73p",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "fbktc5a"
},
{
"model": "thinkcentre m600",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "m00kt44a"
},
{
"model": "thinkcentre m800z",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "fvkt42a"
},
{
"model": "thinkstation e31",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "9skt97a"
},
{
"model": "thinkserver ts250",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkstation p510",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre m700",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "m05kt54a"
},
{
"model": "thinkcentre m8200z",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "fgkt46a"
},
{
"model": "thinkcentre edge 62z",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "f8kt40a"
},
{
"model": "thinkserver rs140",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "fbkt91c"
},
{
"model": "thinkstation p320",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre m8300z",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "fvkt42a"
},
{
"model": "thinkserver ts150",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "fbktc3a"
},
{
"model": "thinkstation p900",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "a6kt86a"
},
{
"model": "thinkcentre m715q",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre x1 aio",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "m0hkt32a"
},
{
"model": "yangtian afh110",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "m05kt73a"
},
{
"model": "thinkcentre e79",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "m0lkt12a"
},
{
"model": "thinkcentre m6500t\\/s",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "fbktc5a"
},
{
"model": "thinkcentre m92p",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "9skt95a"
},
{
"model": "thinkcentre m8600t\\/s",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "fwkt39a"
},
{
"model": "thinkcentre e74z",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "fvkt48a"
},
{
"model": "thinkserver ts240",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "fbktc3a"
},
{
"model": "thinkserver rq750",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "7.05"
},
{
"model": "thinkcentre m8500t\\/s",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "fbktc5a"
},
{
"model": "thinkcentre m7250z",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "fgkt46a"
},
{
"model": "thinkserver ts140",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "fbktc3a"
},
{
"model": "thinkstation p300",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "fbktc6a"
},
{
"model": "thinkcentre e73s",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "fckt78a"
},
{
"model": "yangtian me\\/we h110",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "m05kt61a"
},
{
"model": "thinkcentre m800",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "fwkt39a"
},
{
"model": "thinkserver rd540",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "a1tsb5a"
},
{
"model": "thinkcentre e73z \\",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "fgkt49a"
},
{
"model": "thinkcentre m93p",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "fbktc5a"
},
{
"model": "thinkstation p410",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre m9550z",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "fukt44a"
},
{
"model": "thinkcentre m900z",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "fukt39a"
},
{
"model": "thinkcentre m4600t\\/s",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "m05kt54a"
},
{
"model": "thinkcentre m910t\\/s",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": null
},
{
"model": "yangtian mf\\/wf h81",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "fckt80a"
},
{
"model": "thinkserver ts450",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre e93z \\",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "ffkt43a"
},
{
"model": "yangtian mc godavari",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "m0lkt13a"
},
{
"model": "thinkcentre e75 t\\/s",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkstation p700",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "a5kt86a"
},
{
"model": "s200z",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "m09kt33a"
},
{
"model": "thinkcentre m73",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "fckt78a"
},
{
"model": "yangtian s3040",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "fgkt49a"
},
{
"model": "thinkcentre m4500t\\/s",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "fckt78a"
},
{
"model": "thinkcentre m810z",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre m900",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "fwkt39a"
},
{
"model": "thinkcentre m6600t\\/s",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "fwkt39a"
},
{
"model": "thinkcentre m83z \\",
"scope": "eq",
"trust": 1.0,
"vendor": "lenovo",
"version": "fvkt42a"
},
{
"model": "ideacentre 300s-11ish",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "ideacentre 510s-08ish",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "ideacentre 510s-23isu",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "ideacentre 700",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "63",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "h50-30g desktop",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "m4500 id",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "m4500",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "m4550 id",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "s200z",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "s500",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "v320-15iap",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre e73",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre e73z",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre e74",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre e74s",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre e74z",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre e75 t/s",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre e79",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre e93",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre e93z",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre edge 62z",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre m4500q",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre m4500t/s",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre m4600t/s",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre m600",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre m610",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre m6500t/s",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre m6600",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre m6600q",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre m6600t/s",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre m700",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre m700z",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre m710t/s",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre m715q",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre m7200z",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre m7250z",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre m72e",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre m73",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre m7300z",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre m73p",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre m73z",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre m79",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre m800",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre m800z",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre m810z",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre m8200z",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre m8250z",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre m83",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre m8300z",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre m8350z",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre m83z",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre m8500t/s",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre m8600t/s",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre m900",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre m900z",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre m910 t/s",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre m910q",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre m910x",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre m92",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre m92p",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre m93",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre m93p",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre m9500z",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre m9550z",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkcentre x1 aio",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkserver rd340",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkserver rd440",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkserver rd640",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkserver rq750",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkserver rs140",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkserver td340",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkserver ts150",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkserver ts240",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkserver ts250",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkserver ts450",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkserver ts550",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkstation e31",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkstation e32",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkstation p300",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkstation p310",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkstation p320",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkstation p410",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkstation p500",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkstation p700",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkstation p710",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkstation p900",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "yangtian afh110",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "yangtian afh81",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "yangtian afq150",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "yangtian mc carrizo-l",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "yangtian mc godavari",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "yangtian mc h110",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "yangtian mc h81",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "yangtian me/we h110",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "yangtian mf/wf h81",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "yangtian s3040",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "yangtian s800",
"scope": null,
"trust": 0.8,
"vendor": "lenovo",
"version": null
},
{
"model": "thinkstation",
"scope": "eq",
"trust": 0.3,
"vendor": "lenovo",
"version": "0"
},
{
"model": "thinkserver",
"scope": "eq",
"trust": 0.3,
"vendor": "lenovo",
"version": "0"
},
{
"model": "desktop all in one",
"scope": "eq",
"trust": 0.3,
"vendor": "lenovo",
"version": "-0"
},
{
"model": "desktop",
"scope": "eq",
"trust": 0.3,
"vendor": "lenovo",
"version": "0"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2017-28413"
},
{
"db": "BID",
"id": "100488"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-007403"
},
{
"db": "CNNVD",
"id": "CNNVD-201708-381"
},
{
"db": "NVD",
"id": "CVE-2017-3753"
}
]
},
"configurations": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/configurations#",
"children": {
"@container": "@list"
},
"cpe_match": {
"@container": "@list"
},
"data": {
"@container": "@list"
},
"nodes": {
"@container": "@list"
}
},
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"cpe_match": [
{
"cpe22Uri": "cpe:/o:lenovo:ideacentre_300-20ish_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:ideacentre_300s-11ish_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:ideacentre_510s-08ish_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:ideacentre_510s-23isu_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:ideacentre_700_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:63_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:h50-30g_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:m4500_id_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:m4500_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:m4550_id_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:s200z_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:s500_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:v320-15iap_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkcentre_e73_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkcentre_e73s_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkcentre_e73z_%28aio%29_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkcentre_e74_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkcentre_e74s_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkcentre_e74z_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkcentre_e75_t%2Fs_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkcentre_e79_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkcentre_e93_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkcentre_e93z_%28aio%29_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkcentre_edge_62z_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkcentre_m4500k_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkcentre_m4500q_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkcentre_m4500t%2Fs_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkcentre_m4600t%2Fs_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkcentre_m600_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkcentre_m610_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkcentre_m6500t%2Fs_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkcentre_m6600_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkcentre_m6600q_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkcentre_m6600t%2Fs_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkcentre_m700_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkcentre_m700z_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkcentre_m710t%2Fs_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkcentre_m715q_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkcentre_m7200z_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkcentre_m7250z_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkcentre_m72e_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkcentre_m73_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkcentre_m7300z_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkcentre_m73p_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkcentre_m73z_%28aio%29_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkcentre_m79_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkcentre_m800_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkcentre_m800z_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkcentre_m810z_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkcentre_m8200z_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkcentre_m8250z_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkcentre_m83_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkcentre_m8300z_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkcentre_m8350z_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkcentre_m83z_%28aio%29_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkcentre_m8500t%2Fs_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkcentre_m8600t%2Fs_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkcentre_m900_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkcentre_m900z_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkcentre_m910t%2Fs_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkcentre_m910q_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkcentre_m910x_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkcentre_m92_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkcentre_m92p_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkcentre_m93_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkcentre_m93p_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkcentre_m9500z_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkcentre_m9550z_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkcentre_x1_aio_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkserver_rd340_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkserver_rd440_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkserver_rd540_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkserver_rd640_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkserver_rq750_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkserver_rs140_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkserver_td340_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkserver_ts140_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkserver_ts150_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkserver_ts240_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkserver_ts250_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkserver_ts450_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkserver_ts550_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkstation_c30_%281136%29_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkstation_c30_%281137%29_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkstation_d30_%284353%29_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkstation_d30_%284354%29_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkstation_e31_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkstation_e32_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkstation_p300_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkstation_p310_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkstation_p320_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkstation_p410_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkstation_p500_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkstation_p510_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkstation_p700_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkstation_p710_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkstation_p900_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkstation_p910_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkstation_s30_%284351%29_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:thinkstation_s30_%284352%29_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:yangtian_afh110_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:yangtian_afh81_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:yangtian_afq150_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:yangtian_mc_carrizo-l_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:yangtian_mc_godavari_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:yangtian_mc_h110_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:yangtian_mc_h81_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:yangtian_mf%2Fwf_h81_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:yangtian_s3040_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:lenovo:yangtian_s800_firmware",
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2017-007403"
}
]
},
"credits": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/credits#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Alex Matrosov, Principal Research Scientist, Cylance.",
"sources": [
{
"db": "BID",
"id": "100488"
}
],
"trust": 0.3
},
"cve": "CVE-2017-3753",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"author": "nvd@nist.gov",
"availabilityImpact": "COMPLETE",
"baseScore": 7.2,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 3.9,
"id": "CVE-2017-3753",
"impactScore": 10.0,
"integrityImpact": "COMPLETE",
"severity": "HIGH",
"trust": 1.8,
"vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
{
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "CNVD",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 8.6,
"id": "CNVD-2017-28413",
"impactScore": 2.9,
"integrityImpact": "NONE",
"severity": "MEDIUM",
"trust": 0.6,
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"author": "VULHUB",
"availabilityImpact": "COMPLETE",
"baseScore": 7.2,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 3.9,
"id": "VHN-111956",
"impactScore": 10.0,
"integrityImpact": "COMPLETE",
"severity": "HIGH",
"trust": 0.1,
"vectorString": "AV:L/AC:L/AU:N/C:C/I:C/A:C",
"version": "2.0"
}
],
"cvssV3": [
{
"attackComplexity": "LOW",
"attackVector": "PHYSICAL",
"author": "nvd@nist.gov",
"availabilityImpact": "HIGH",
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"exploitabilityScore": 0.9,
"id": "CVE-2017-3753",
"impactScore": 5.9,
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"trust": 1.8,
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
}
],
"severity": [
{
"author": "nvd@nist.gov",
"id": "CVE-2017-3753",
"trust": 1.0,
"value": "MEDIUM"
},
{
"author": "NVD",
"id": "CVE-2017-3753",
"trust": 0.8,
"value": "Medium"
},
{
"author": "CNVD",
"id": "CNVD-2017-28413",
"trust": 0.6,
"value": "MEDIUM"
},
{
"author": "CNNVD",
"id": "CNNVD-201708-381",
"trust": 0.6,
"value": "HIGH"
},
{
"author": "VULHUB",
"id": "VHN-111956",
"trust": 0.1,
"value": "HIGH"
}
]
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2017-28413"
},
{
"db": "VULHUB",
"id": "VHN-111956"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-007403"
},
{
"db": "CNNVD",
"id": "CNNVD-201708-381"
},
{
"db": "NVD",
"id": "CVE-2017-3753"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "A vulnerability has been identified in some Lenovo products that use UEFI (BIOS) code developed by American Megatrends, Inc. (AMI). With this vulnerability, conditions exist where an attacker with administrative privileges or physical access to a system may be able to run specially crafted code that can allow them to bypass system protections such as Device Guard and Hyper-V. American Megatrends, Inc. LenovoIdeaCentre300-20ISH and so on are all products of China Lenovo. The LenovoIdeaCentre300-20ISH is a desktop computer; the ThinkServerRD540 is a server device. BIOSSMIHandler is one of the management information structure handlers. A security vulnerability exists in BIOSSMIHandler in several Lenovo products due to a program failing to perform input validation. \nA local attacker can exploit this issue to execute arbitrary code in the context of the user running the affected application. Lenovo IdeaCentre 300-20ISH, etc. There is a security vulnerability in the BIOS SMI Handler in several Lenovo products. The following versions are affected: Lenovo IdeaCentre 300-20ISH; Lenovo M4550 ID; ThinkCentre E73s; ThinkCentre M4500k; ThinkServer RD540; ThinkServer TS140; Thinkstation P510; Thinkstation P910, etc",
"sources": [
{
"db": "NVD",
"id": "CVE-2017-3753"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-007403"
},
{
"db": "CNVD",
"id": "CNVD-2017-28413"
},
{
"db": "BID",
"id": "100488"
},
{
"db": "VULHUB",
"id": "VHN-111956"
}
],
"trust": 2.52
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "NVD",
"id": "CVE-2017-3753",
"trust": 3.4
},
{
"db": "LENOVO",
"id": "LEN-14695",
"trust": 2.6
},
{
"db": "JVNDB",
"id": "JVNDB-2017-007403",
"trust": 0.8
},
{
"db": "CNNVD",
"id": "CNNVD-201708-381",
"trust": 0.7
},
{
"db": "CNVD",
"id": "CNVD-2017-28413",
"trust": 0.6
},
{
"db": "BID",
"id": "100488",
"trust": 0.4
},
{
"db": "VULHUB",
"id": "VHN-111956",
"trust": 0.1
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2017-28413"
},
{
"db": "VULHUB",
"id": "VHN-111956"
},
{
"db": "BID",
"id": "100488"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-007403"
},
{
"db": "CNNVD",
"id": "CNNVD-201708-381"
},
{
"db": "NVD",
"id": "CVE-2017-3753"
}
]
},
"id": "VAR-201708-0554",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "CNVD",
"id": "CNVD-2017-28413"
},
{
"db": "VULHUB",
"id": "VHN-111956"
}
],
"trust": 1.109662561818182
},
"iot_taxonomy": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"category": [
"Network device"
],
"sub_category": null,
"trust": 0.6
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2017-28413"
}
]
},
"last_update_date": "2024-11-23T22:45:36.995000Z",
"patch": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/patch#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"title": "LEN-14695",
"trust": 0.8,
"url": "https://support.lenovo.com/us/ja/product_security/len-14695"
},
{
"title": "A variety of Lenovo product BIOSSMIHandler bypasses the system protection vulnerability patch",
"trust": 0.6,
"url": "https://www.cnvd.org.cn/patchInfo/show/102850"
},
{
"title": "Multiple Lenovo product BIOS SMI Handler Security vulnerabilities",
"trust": 0.6,
"url": "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=73847"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2017-28413"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-007403"
},
{
"db": "CNNVD",
"id": "CNNVD-201708-381"
}
]
},
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "CWE-94",
"trust": 1.9
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-111956"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-007403"
},
{
"db": "NVD",
"id": "CVE-2017-3753"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 2.0,
"url": "https://support.lenovo.com/us/en/product_security/len-14695"
},
{
"trust": 0.8,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-3753"
},
{
"trust": 0.8,
"url": "https://nvd.nist.gov/vuln/detail/cve-2017-3753"
},
{
"trust": 0.6,
"url": "https://support.lenovo.com/us/zh/product_security/len-14695"
},
{
"trust": 0.3,
"url": "http://www.lenovo.com/ca/en/"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2017-28413"
},
{
"db": "VULHUB",
"id": "VHN-111956"
},
{
"db": "BID",
"id": "100488"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-007403"
},
{
"db": "CNNVD",
"id": "CNNVD-201708-381"
},
{
"db": "NVD",
"id": "CVE-2017-3753"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "CNVD",
"id": "CNVD-2017-28413"
},
{
"db": "VULHUB",
"id": "VHN-111956"
},
{
"db": "BID",
"id": "100488"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-007403"
},
{
"db": "CNNVD",
"id": "CNNVD-201708-381"
},
{
"db": "NVD",
"id": "CVE-2017-3753"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2017-09-26T00:00:00",
"db": "CNVD",
"id": "CNVD-2017-28413"
},
{
"date": "2017-08-10T00:00:00",
"db": "VULHUB",
"id": "VHN-111956"
},
{
"date": "2017-07-27T00:00:00",
"db": "BID",
"id": "100488"
},
{
"date": "2017-09-20T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2017-007403"
},
{
"date": "2017-08-25T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201708-381"
},
{
"date": "2017-08-10T00:29:00.230000",
"db": "NVD",
"id": "CVE-2017-3753"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2017-09-26T00:00:00",
"db": "CNVD",
"id": "CNVD-2017-28413"
},
{
"date": "2017-08-29T00:00:00",
"db": "VULHUB",
"id": "VHN-111956"
},
{
"date": "2017-07-27T00:00:00",
"db": "BID",
"id": "100488"
},
{
"date": "2017-09-20T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2017-007403"
},
{
"date": "2017-08-25T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201708-381"
},
{
"date": "2024-11-21T03:26:04.303000",
"db": "NVD",
"id": "CVE-2017-3753"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "local",
"sources": [
{
"db": "BID",
"id": "100488"
},
{
"db": "CNNVD",
"id": "CNNVD-201708-381"
}
],
"trust": 0.9
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "AMI Developed by UEFI Some use code Lenovo Code injection vulnerability in products",
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2017-007403"
}
],
"trust": 0.8
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "code injection",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201708-381"
}
],
"trust": 0.6
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.