4.7
CVE-2021-3718
- EPSS 0.04%
- Published 12.11.2021 22:15:07
- Last modified 21.11.2024 06:22:14
- Source psirt@lenovo.com
- Teams watchlist Login
- Open Login
A denial of service vulnerability was reported in some ThinkPad models that could cause a system to crash when the Enhanced Biometrics setting is enabled in BIOS.
Data is provided by the National Vulnerability Database (NVD)
Lenovo ≫ Thinkpad 11e 3rd Gen Firmware SwEditionbraswell Version <= 1.22
Lenovo ≫ Thinkpad 11e 3rd Gen Version-
Microsoft ≫ Windows 10 Version-
Microsoft ≫ Windows 7 Version- HwPlatformx64
Microsoft ≫ Windows 8.1 Version-
Microsoft ≫ Windows 10 Version-
Microsoft ≫ Windows 7 Version- HwPlatformx64
Microsoft ≫ Windows 8.1 Version-
Lenovo ≫ Thinkpad 11e 3rd Gen Firmware SwEditionskylate Version <= 1.29
Lenovo ≫ Thinkpad 11e 3rd Gen Version-
Microsoft ≫ Windows 10 Version-
Microsoft ≫ Windows 7 Version- HwPlatformx64
Microsoft ≫ Windows 8.1 Version-
Microsoft ≫ Windows 10 Version-
Microsoft ≫ Windows 7 Version- HwPlatformx64
Microsoft ≫ Windows 8.1 Version-
Lenovo ≫ Thinkpad 11e 4th Gen I3 Firmware Version <= 1.22
Lenovo ≫ Thinkpad 11e 4th Gen I7 Firmware Version <= 1.22
Lenovo ≫ Thinkpad 11e 4th Gen I5 Firmware Version <= 1.22
Lenovo ≫ Thinkpad 11e 4th Gen Celeron Firmware Version <= 1.27
Lenovo ≫ Thinkpad 11e Yoga Gen 6 Firmware Version <= 1.12
Lenovo ≫ Thinkpad 13 Gen 2 Firmware Version <= 1.29
Lenovo ≫ Thinkpad E490 Firmware Version <= 1.30
Lenovo ≫ Thinkpad E490s Firmware Version <= 1.30
Lenovo ≫ Thinkpad E590 Firmware Version <= 1.30
Lenovo ≫ Thinkpad L13 Firmware Version <= 1.31
Lenovo ≫ Thinkpad L13 Gen 2 Firmware SwEditionnon-vpro Version <= 1.11
Lenovo ≫ Thinkpad L13 Gen 2 Firmware SwEditionvpro Version <= 1.08
Lenovo ≫ Thinkpad L13 Yoga Firmware Version <= 1.31
Lenovo ≫ Thinkpad L13 Yoga Gen 2 Firmware SwEditionnon-vpro Version <= 1.11
Lenovo ≫ Thinkpad L13 Yoga Gen 2 Firmware SwEditionvpro Version <= 1.08
Lenovo ≫ Thinkpad L14 Gen 1 Firmware Version < 1.15
Lenovo ≫ Thinkpad L14 Gen 1 Version-
Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows 10 Version- HwPlatformx64
Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows 10 Version- HwPlatformx64
Lenovo ≫ Thinkpad L14 Firmware Version < 1.20.1.17
Lenovo ≫ Thinkpad L15 Gen 1 Firmware Version < 1.15
Lenovo ≫ Thinkpad L15 Gen 1 Version-
Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows 10 Version- HwPlatformx64
Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows 10 Version- HwPlatformx64
Lenovo ≫ Thinkpad L15 Firmware Version < 1.20.1.17
Lenovo ≫ Thinkpad L380 Firmware Version <= 1.26
Lenovo ≫ Thinkpad L380 Yoga Firmware Version <= 1.26
Lenovo ≫ Thinkpad L390 Yoga Firmware Version <= 1.35
Lenovo ≫ Thinkpad L390 Firmware Version <= 1.35
Lenovo ≫ Thinkpad L490 Firmware Version < 1.26
Lenovo ≫ Thinkpad L590 Firmware Version < 1.26
Lenovo ≫ Thinkpad P43s Firmware Version < n2iet96w
Lenovo ≫ Thinkpad P43s Version-
Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows 10 Version- HwPlatformx64
Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows 10 Version- HwPlatformx64
Lenovo ≫ Thinkpad P52 Firmware Version < n2cet60w
Lenovo ≫ Thinkpad P52 Version-
Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows 10 Version- HwPlatformx64
Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows 10 Version- HwPlatformx64
Lenovo ≫ Thinkpad P53s Firmware Version < n2iet96w
Lenovo ≫ Thinkpad P53s Version-
Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows 10 Version- HwPlatformx64
Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows 10 Version- HwPlatformx64
Lenovo ≫ Thinkpad P72 Firmware Version < n2cet60w
Lenovo ≫ Thinkpad P72 Version-
Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows 10 Version- HwPlatformx64
Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows 10 Version- HwPlatformx64
Lenovo ≫ Thinkpad S5 2nd Gen Firmware Version <= 1.28
Lenovo ≫ Thinkpad T460 Firmware Version <= 1.43.1.11
Lenovo ≫ Thinkpad T460 Version-
Microsoft ≫ Windows 10 Version-
Microsoft ≫ Windows 7 Version- HwPlatformx64
Microsoft ≫ Windows 7 Version- HwPlatformx86
Microsoft ≫ Windows 8.1 Version-
Microsoft ≫ Windows 10 Version-
Microsoft ≫ Windows 7 Version- HwPlatformx64
Microsoft ≫ Windows 7 Version- HwPlatformx86
Microsoft ≫ Windows 8.1 Version-
Lenovo ≫ Thinkpad T490 Firmware Version < n2iet96w
Lenovo ≫ Thinkpad T490 Version-
Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows 10 Version- HwPlatformx64
Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows 10 Version- HwPlatformx64
Lenovo ≫ Thinkpad T590 Firmware Version < n2iet96w
Lenovo ≫ Thinkpad T590 Version-
Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows 10 Version- HwPlatformx64
Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows 10 Version- HwPlatformx64
Lenovo ≫ Thinkpad S2 Gen 6 Firmware Version <= 2021-09-30
Lenovo ≫ Thinkpad S2 Yoga Gen 6 Firmware Version <= 2021-09-30
Lenovo ≫ Thinkpad X12 Detachable Gen 1 Firmware Version < 1.16
Lenovo ≫ Thinkpad X260 Firmware Version <= 1.47\/1.15
Lenovo ≫ Thinkpad X260 Version-
Microsoft ≫ Windows 10 Version- HwPlatformx64
Microsoft ≫ Windows 7 Version-
Microsoft ≫ Windows 10 Version- HwPlatformx64
Microsoft ≫ Windows 7 Version-
Lenovo ≫ Thinkpad X380 Yoga Firmware Version <= 1.34
Lenovo ≫ Thinkpad X390 Yoga Firmware Version < n2let87w
Lenovo ≫ Thinkpad X390 Yoga Version-
Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows 10 Version- HwPlatformx64
Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows 10 Version- HwPlatformx64
Lenovo ≫ Thinkpad 11e 5th Gen Firmware Version <= 1.13
Lenovo ≫ Thinkpad 11e 5th Gen Firmware Version <= 1.13
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
Type | Source | Score | Percentile |
---|---|---|---|
EPSS | FIRST.org | 0.04% | 0.093 |
Source | Base Score | Exploit Score | Impact Score | Vector string |
---|---|---|---|---|
nvd@nist.gov | 4.6 | 0.9 | 3.6 |
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
|
nvd@nist.gov | 4.7 | 3.4 | 6.9 |
AV:L/AC:M/Au:N/C:N/I:N/A:C
|
psirt@lenovo.com | 4.3 | 0.7 | 3.6 |
CVSS:3.1/AV:P/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
|
CWE-232 Improper Handling of Undefined Values
The product does not handle or incorrectly handles when a value is not defined or supported for the associated parameter, field, or argument name.