Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2021-3718
HistoryNov 12, 2021 - 10:15 p.m.

CVE-2021-3718

2021-11-1222:15:07
CWE-232
[email protected]
web.nvd.nist.gov
18
thinkpad
vulnerability
denial of service
system crash
enhanced biometrics
bios
cve-2021-3718

4.7 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:N/I:N/A:C

4.6 Medium

CVSS3

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

4.7 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

20.4%

JSON

A denial of service vulnerability was reported in some ThinkPad models that could cause a system to crash when the Enhanced Biometrics setting is enabled in BIOS.

Affected configurations

NVD
Node
lenovothinkpad_11e_3rd_genMatch-
OR
microsoftwindows_10Match-
OR
microsoftwindows_7Match-x64
OR
microsoftwindows_8.1Match-
AND
lenovothinkpad_11e_3rd_gen_firmwareRange1.22braswell
Node
lenovothinkpad_11e_3rd_genMatch-
OR
microsoftwindows_10Match-
OR
microsoftwindows_7Match-x64
OR
microsoftwindows_8.1Match-
AND
lenovothinkpad_11e_3rd_gen_firmwareRange1.29skylate
Node
lenovothinkpad_11e_4th_gen_i3Match-
OR
microsoftwindows_10Match-
AND
lenovothinkpad_11e_4th_gen_i3_firmwareRange1.22
Node
lenovothinkpad_11e_4th_gen_i7Match-
OR
microsoftwindows_10Match-
AND
lenovothinkpad_11e_4th_gen_i7_firmwareRange1.22
Node
lenovothinkpad_11e_4th_gen_i5Match-
OR
microsoftwindows_10Match-
AND
lenovothinkpad_11e_4th_gen_i5_firmwareRange1.22
Node
lenovothinkpad_11e_4th_gen_celeronMatch-
OR
microsoftwindows_10Match-x64
AND
lenovothinkpad_11e_4th_gen_celeron_firmwareRange1.27
Node
lenovothinkpad_11e_yoga_gen_6Match-
OR
microsoftwindows_10Match-x64
AND
lenovothinkpad_11e_yoga_gen_6_firmwareRange1.12
Node
lenovothinkpad_13_gen_2Match-
OR
microsoftwindows_10Match-x64
AND
lenovothinkpad_13_gen_2_firmwareRange1.29
Node
lenovothinkpad_e490_firmwareRange1.30
AND
lenovothinkpad_e490Match-
OR
microsoftwindows_10Match-x64
Node
lenovothinkpad_e490s_firmwareRange1.30
AND
lenovothinkpad_e490sMatch-
OR
microsoftwindows_10Match-x64
Node
lenovothinkpad_e590_firmwareRange1.30
AND
lenovothinkpad_e590Match-
OR
microsoftwindows_10Match-x64
Node
lenovothinkpad_l13_firmwareRange1.31
AND
lenovothinkpad_l13Match-
OR
microsoftwindows_10Match-x64
Node
lenovothinkpad_l13_gen_2_firmwareRange1.11non-vpro
AND
lenovothinkpad_l13_gen_2Match-
OR
microsoftwindows_10Match-x64
Node
lenovothinkpad_l13_gen_2_firmwareRange1.08vpro
AND
lenovothinkpad_l13_gen_2Match-
OR
microsoftwindows_10Match-x64
Node
lenovothinkpad_l13_yoga_firmwareRange1.31
AND
lenovothinkpad_l13_yogaMatch-
OR
microsoftwindows_10Match-x64
Node
lenovothinkpad_l13_yoga_gen_2_firmwareRange1.11non-vpro
AND
lenovothinkpad_l13_yoga_gen_2Match-
OR
microsoftwindows_10Match-x64
Node
lenovothinkpad_l13_yoga_gen_2_firmwareRange1.08vpro
AND
lenovothinkpad_l13_yoga_gen_2Match-
OR
microsoftwindows_10Match-x64
Node
lenovothinkpad_l14_gen_1_firmwareRange<1.15
AND
lenovothinkpad_l14_gen_1Match-
OR
linuxlinux_kernelMatch-
OR
microsoftwindows_10Match-x64
Node
lenovothinkpad_l14_firmwareRange<1.20.1.17
AND
lenovothinkpad_l14Match-
OR
microsoftwindows_10Match-x64
Node
lenovothinkpad_l15_gen_1_firmwareRange<1.15
AND
lenovothinkpad_l15_gen_1Match-
OR
linuxlinux_kernelMatch-
OR
microsoftwindows_10Match-x64
Node
lenovothinkpad_l15_firmwareRange<1.20.1.17
AND
lenovothinkpad_l15Match-
OR
microsoftwindows_10Match-x64
Node
lenovothinkpad_l380_firmwareRange1.26
AND
lenovothinkpad_l380Match-
OR
microsoftwindows_10Match-x64
Node
lenovothinkpad_l380_yogaMatch-
OR
microsoftwindows_10Match-x64
AND
lenovothinkpad_l380_yoga_firmwareRange1.26
Node
lenovothinkpad_l390_yoga_firmwareRange1.35
AND
lenovothinkpad_l390_yogaMatch-
OR
microsoftwindows_10Match-x64
Node
lenovothinkpad_l390_firmwareRange1.35
AND
lenovothinkpad_l390Match-
OR
microsoftwindows_10Match-x64
Node
lenovothinkpad_l490_firmwareRange<1.26
AND
lenovothinkpad_l490Match-
OR
microsoftwindows_10Match-x64
Node
lenovothinkpad_l590_firmwareRange<1.26
AND
lenovothinkpad_l590Match-
OR
microsoftwindows_10Match-x64
Node
lenovothinkpad_p43s_firmwareRange<n2iet96w
AND
lenovothinkpad_p43sMatch-
OR
linuxlinux_kernelMatch-
OR
microsoftwindows_10Match-x64
Node
lenovothinkpad_p52_firmwareRange<n2cet60w
AND
lenovothinkpad_p52Match-
OR
linuxlinux_kernelMatch-
OR
microsoftwindows_10Match-x64
Node
lenovothinkpad_p53s_firmwareRange<n2iet96w
AND
lenovothinkpad_p53sMatch-
OR
linuxlinux_kernelMatch-
OR
microsoftwindows_10Match-x64
Node
lenovothinkpad_p72_firmwareRange<n2cet60w
AND
lenovothinkpad_p72Match-
OR
linuxlinux_kernelMatch-
OR
microsoftwindows_10Match-x64
Node
lenovothinkpad_s5_2nd_gen_firmwareRange1.28
AND
lenovothinkpad_s5_2nd_genMatch-
OR
microsoftwindows_10Match-x64
Node
lenovothinkpad_t460_firmwareRange1.43.1.11
AND
lenovothinkpad_t460Match-
OR
microsoftwindows_10Match-
OR
microsoftwindows_7Match-x64
OR
microsoftwindows_7Match-x86
OR
microsoftwindows_8.1Match-
Node
lenovothinkpad_t490_firmwareRange<n2iet96w
AND
lenovothinkpad_t490Match-
OR
linuxlinux_kernelMatch-
OR
microsoftwindows_10Match-x64
Node
lenovothinkpad_t590_firmwareRange<n2iet96w
AND
lenovothinkpad_t590Match-
OR
linuxlinux_kernelMatch-
OR
microsoftwindows_10Match-x64
Node
lenovothinkpad_s2_gen_6_firmwareRange2021-09-30
AND
lenovothinkpad_s2_gen_6Match-
OR
microsoftwindows_10Match-x64
Node
lenovothinkpad_s2_yoga_gen_6_firmwareRange2021-09-30
AND
lenovothinkpad_s2_yoga_gen_6Match-
OR
microsoftwindows_10Match-x64
Node
lenovothinkpad_x12_detachable_gen_1_firmwareRange<1.16
AND
lenovothinkpad_x12_detachable_gen_1Match-
OR
microsoftwindows_10Match-x64
Node
lenovothinkpad_x260_firmwareRange1.47\/1.15
AND
lenovothinkpad_x260Match-
OR
microsoftwindows_10Match-x64
OR
microsoftwindows_7Match-
Node
lenovothinkpad_x380_yoga_firmwareRange1.34
AND
lenovothinkpad_x380_yogaMatch-
OR
microsoftwindows_10Match-x64
Node
lenovothinkpad_x390_yoga_firmwareRange<n2let87w
AND
lenovothinkpad_x390_yogaMatch-
OR
linuxlinux_kernelMatch-
OR
microsoftwindows_10Match-x64
Node
lenovothinkpad_11e_5th_gen_firmwareRange1.13
AND
lenovothinkpad_11e_5th_genMatch-
OR
microsoftwindows_10Match-x64
Node
lenovothinkpad_11e_5th_gen_firmwareRange1.13
AND
lenovothinkpad_yoga_370Match-
OR
microsoftwindows_10Match-x64

CNA Affected

[
  {
    "product": "ThinkPad BIOS",
    "vendor": "Lenovo",
    "versions": [
      {
        "status": "affected",
        "version": "various"
      }
    ]
  }
]

Related

prion 1
cvelist 1
nvd 1
prion
prion
Denial of service
2021-11-12 22:15:00
cvelist
cvelist
CVE-2021-3718
2021-11-12 22:05:34
nvd
nvd
CVE-2021-3718
2021-11-12 22:15:07

4.7 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:N/I:N/A:C

4.6 Medium

CVSS3

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

4.7 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

20.4%

JSON
Related for CVE-2021-3718
prion1cvelist1nvd1