CVE-2021-4211

moderate-risk

Published 2022-04-22

A potential vulnerability in the SMI callback function used in the SMBIOS event log driver in some Lenovo Desktop, ThinkStation, and ThinkEdge models may allow an attacker with local access and elevated privileges to execute arbitrary code.

Do I need to act?

0.04% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 6.7/10 Medium

LOCAL / LOW complexity

Affected Products (20)

A340-22Icb Firmware

A340-22Ick Firmware

A340-24Icb Firmware

A340-24Ick Firmware

A540-24Icb Firmware

A540-27Icb Firmware

Ideacentre 5-14Iob6 Firmware

Ideacentre 510S-07Icb Firmware

Ideacentre 510S-07Ick Firmware

Ideacentre Aio 3-22Ada6 Firmware

Ideacentre Aio 3-22Iil5 Firmware

Ideacentre Aio 3-22Itl6 Firmware

Ideacentre Aio 3-24Ada6 Firmware

Ideacentre Aio 3-24Iil5 Firmware

Ideacentre Aio 3-24Itl6 Firmware

Ideacentre Aio 3-27Itl6 Firmware

Ideacentre Creator 5-14Iob6 Firmware

Ideacentre Gaming 5-14Iob6 Firmware

Se30 Firmware

Thinkcentre M600 Firmware

Affected Vendors

Lenovo

References (2)

Vendor Advisory https://support.lenovo.com/us/en/product_security/LEN-77639

/ 100

moderate-risk

Severity 21/34 · High

Exploitability 0/34 · Minimal

Exposure 26/34 · High