BIOS Tamper Detection Issue in ThinkPad T14s Gen 3 and X13 Gen 3 by Lenovo
CVE-2022-48183
6.1MEDIUM
Key Information:
- Vendor
- Lenovo
- Status
- Vendor
- CVE Published:
- 9 October 2023
Summary
A vulnerability has been identified in Lenovo's ThinkPad T14s Gen 3 and X13 Gen 3 that affects the BIOS tamper detection mechanism. Under specific conditions, this issue may prevent the mechanism from triggering as intended, which could potentially grant unauthorized access to the system. Users are advised to remain vigilant and apply necessary updates to mitigate the risks associated with this vulnerability.
Affected Version(s)
ThinkPad T14s Gen 3 BIOS - Linux
ThinkPad T14s X13 Gen3 BIOS - Windows
ThinkPad X13 Gen3 BIOS - Linux
References
CVSS V3.1
Score:
6.1
Severity:
MEDIUM
Confidentiality:
None
Integrity:
High
Availability:
None
Attack Vector:
Physical
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved
Credit
Lenovo thanks Zoltan Harmath for reporting this vulnerability.