Local Privilege Escalation in Lenovo BIOS for Consumer Notebooks
CVE-2022-3745
4.4MEDIUM
What is CVE-2022-3745?
A vulnerability exists in the LCFC BIOS of various Lenovo consumer notebook models. This issue could enable a local attacker with elevated privileges to access sensitive data, including incoming and returned information from System Management Interrupts (SMI). Proper security measures and updates are crucial to mitigate this risk.
Affected Version(s)
Notebook various