BIOS Tamper Detection Issue in ThinkPad T14s Gen 3 and X13 Gen 3 by Lenovo
CVE-2022-48183

6.1MEDIUM

Summary

A vulnerability has been identified in Lenovo's ThinkPad T14s Gen 3 and X13 Gen 3 that affects the BIOS tamper detection mechanism. Under specific conditions, this issue may prevent the mechanism from triggering as intended, which could potentially grant unauthorized access to the system. Users are advised to remain vigilant and apply necessary updates to mitigate the risks associated with this vulnerability.

Affected Version(s)

ThinkPad T14s Gen 3 BIOS - Linux

ThinkPad T14s X13 Gen3 BIOS - Windows

ThinkPad X13 Gen3 BIOS - Linux

References

CVSS V3.1

Score:
6.1
Severity:
MEDIUM
Confidentiality:
None
Integrity:
High
Availability:
None
Attack Vector:
Physical
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Lenovo thanks Zoltan Harmath for reporting this vulnerability.
.