Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2022-1892
HistoryJan 26, 2023 - 9:15 p.m.

CVE-2022-1892

2023-01-2621:15:25
CWE-120
CWE-122
[email protected]
web.nvd.nist.gov
24
cve-2022-1892
buffer overflow
systembootmanagerdxe
lenovo notebook
local privileges
arbitrary code execution
nvd

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

8 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

A buffer overflow in the SystemBootManagerDxe driver in some Lenovo Notebook products may allow an attacker with local privileges to execute arbitrary code.

Affected configurations

NVD
Node
lenovo100e_2nd_genMatch-
AND
lenovo100e_2nd_gen_firmwareRange<frcn23ww
Node
lenovo100w_gen_3Match-
AND
lenovo100w_gen_3_firmwareRange<gacn38ww
Node
lenovo13w_yogaMatch-
AND
lenovo13w_yoga_firmwareRange<jacn31ww
Node
lenovo14w_gen_2Match-
AND
lenovo14w_gen_2_firmwareRange<h0cn21ww
Node
lenovo300e_2nd_genMatch-
AND
lenovo300e_2nd_gen_firmwareRange<frcn23ww
Node
lenovo300w_gen_3Match-
AND
lenovo300w_gen_3_firmwareRange<gacn38ww
Node
lenovo500w_gen_3Match-
AND
lenovo500w_gen_3_firmwareRange<g6cn40ww
Node
lenovo730s-13imlMatch-
AND
lenovo730s-13iml_firmwareRange<brcn20ww
Node
lenovoflex_3-11ada05_firmwareRange<fpcn26ww
AND
lenovoflex_3-11ada05Match-
Node
lenovoflex_5-14alc05_firmwareRange<gjcn27ww
AND
lenovoflex_5-14alc05Match-
Node
lenovoflex_5-14are05_firmwareRange<eecn39ww
AND
lenovoflex_5-14are05Match-
Node
lenovoflex_5-14iil05_firmwareRange<eecn40ww
AND
lenovoflex_5-14iil05Match-
Node
lenovoflex_5-14itl05_firmwareRange<fxcn38ww
AND
lenovoflex_5-14itl05Match-
Node
lenovoflex_5-15alc05_firmwareRange<gjcn27ww
AND
lenovoflex_5-15alc05Match-
Node
lenovoflex_5-15iil05_firmwareRange<eccn40ww
AND
lenovoflex_5-15iil05Match-
Node
lenovoflex_5-15itl05_firmwareRange<fxcn38ww
AND
lenovoflex_5-15itl05Match-
Node
lenovoideapad_1-11ada05_firmwareRange<fqcn26ww
AND
lenovoideapad_1-11ada05Match-
Node
lenovoideapad_1-11igl05_firmwareRange<dwcn24ww
AND
lenovoideapad_1-11igl05Match-
Node
lenovoideapad_1-14ada05_firmwareRange<fqcn26ww
AND
lenovoideapad_1-14ada05Match-
Node
lenovoideapad_1-14igl05_firmwareRange<dwcn24ww
AND
lenovoideapad_1-14igl05Match-
Node
lenovoideapad_3-15ada05_firmwareRange<e8cn36ww
AND
lenovoideapad_3-15ada05Match-
Node
lenovoideapad_3-14ada05_firmwareRange<e8cn36ww
AND
lenovoideapad_3-14ada05Match-
Node
lenovoideapad_3-14ada6_firmwareRange<hbcn24ww
AND
lenovoideapad_3-14ada6Match-
Node
lenovoideapad_3-14alc6_firmwareRange<glcn48ww
AND
lenovoideapad_3-14alc6Match-
Node
lenovoideapad_3-15ada6_firmwareRange<hbcn24ww
AND
lenovoideapad_3-15ada6Match-
Node
lenovoideapad_3-15alc6_firmwareRange<glcn48ww
AND
lenovoideapad_3-15alc6Match-
Node
lenovoideapad_3-17alc6_firmwareRange<e8cn36ww
AND
lenovoideapad_3-17alc6Match-
Node
lenovoideapad_3-17ada05_firmwareRange<hbcn24ww
AND
lenovoideapad_3-17ada05Match-
Node
lenovoideapad_3-17ada6_firmwareRange<glcn48ww
AND
lenovoideapad_3-17ada6Match-
Node
lenovoideapad_5_15aba7_firmwareRange<kacn14ww
AND
lenovoideapad_5_15aba7Match-
Node
lenovoideapad_flex_5_14alc7_firmwareRange<jccn29ww
AND
lenovoideapad_flex_5_14alc7Match-
Node
lenovoideapad_flex_5_16alc7_firmwareRange<jccn29ww
AND
lenovoideapad_flex_5_16alc7Match-
Node
lenovolegion_s7-15imh5_firmwareRange<hacn37ww
AND
lenovolegion_s7-15imh5Match-
Node
lenovolegion_s7-15ach6_firmwareRange<g1cn27ww
AND
lenovolegion_s7-15ach6Match-
Node
lenovolegion_s7-15arh5_firmwareRange<fdcn40ww
AND
lenovolegion_s7-15arh5Match-
Node
lenovos145-14api_firmwareRange<bucn33ww
AND
lenovos145-14apiMatch-
Node
lenovos145-14ast_firmwareRange<aycn28ww
AND
lenovos145-14astMatch-
Node
lenovos145-15api_firmwareRange<bucn33ww
AND
lenovos145-15apiMatch-
Node
lenovos145-15ast_firmwareRange<aycn28ww
AND
lenovos145-15astMatch-
Node
lenovos540-13api_firmwareRange<cxcn36ww
AND
lenovos540-13apiMatch-
Node
lenovoideapad_s940-14iil_firmwareRange<bqcn34ww
AND
lenovoideapad_s940-14iilMatch-
Node
lenovoyoga_s940-14iil_firmwareRange<bqcn34ww
AND
lenovoyoga_s940-14iilMatch-
Node
lenovoideapad_slim_1-14ast-05_firmwareRange<cwcn25ww
AND
lenovoideapad_slim_1-14ast-05Match-
Node
lenovoideapad_slim_1-11ast-05_firmwareRange<cwcn25ww
AND
lenovoideapad_slim_1-11ast-05Match-
Node
lenovothinkbook_13s_g3_acn_firmwareRange<gmcn29ww
AND
lenovothinkbook_13s_g3_acnMatch-
Node
lenovothinkbook_13s_g2_are_firmwareRange<fvcn24ww
AND
lenovothinkbook_13s_g2_areMatch-
Node
lenovothinkbook_13s_g2_itl_firmwareRange<f9cn50ww
AND
lenovothinkbook_13s_g2_itlMatch-
Node
lenovothinkbook_13s-iml_firmwareRange<cqcn37ww
AND
lenovothinkbook_13s-imlMatch-
Node
lenovothinkbook_14-iil_firmwareRange<djcn28ww
AND
lenovothinkbook_14-iilMatch-
Node
lenovothinkbook_14-iml_firmwareRange<cjcn38ww
AND
lenovothinkbook_14-imlMatch-
Node
lenovothinkbook_14p_g2_ach_firmwareRange<gwcn41ww
AND
lenovothinkbook_14p_g2_achMatch-
Node
lenovothinkbook_14s_g2_itl_firmwareRange<f9cn50ww
AND
lenovothinkbook_14s_g2_itlMatch-
Node
lenovothinkbook_14s-iml_firmwareRange<cqcn37ww
AND
lenovothinkbook_14s-imlMatch-
Node
lenovothinkbook_15-iil_firmwareRange<djcn28ww
AND
lenovothinkbook_15-iilMatch-
Node
lenovothinkbook_15-iml_firmwareRange<cjcn38ww
AND
lenovothinkbook_15-imlMatch-
Node
lenovothinkbook_16p_g2_ach_firmwareRange<gxcn42ww
AND
lenovothinkbook_16p_g2_achMatch-
Node
lenovov130-15ikbMatch-
AND
lenovov130-15ikb_firmwareRange<8vcn31ww
Node
lenovov14_g2-alcMatch-
AND
lenovov14_g2-alc_firmwareRange<glcn48ww
Node
lenovov14-adaMatch-
AND
lenovov14-ada_firmwareRange<e8cn36ww
Node
lenovov15_g2-alcMatch-
AND
lenovov15_g2-alc_firmwareRange<glcn48ww
Node
lenovov15-adaMatch-
AND
lenovov15-ada_firmwareRange<e8cn36ww
Node
lenovoyoga_9-15imh5_firmwareRange<epcn28ww
AND
lenovoyoga_9-15imh5Match-
Node
lenovoyoga_c640-13iml_firmwareRange<chcn28ww
AND
lenovoyoga_c640-13imlMatch-
Node
lenovoyoga_c640-13iml_lte_firmwareRange<chcn28ww
AND
lenovoyoga_c640-13iml_lteMatch-
Node
lenovoyoga_c940-15irh_firmwareRange<bscn37ww
AND
lenovoyoga_c940-15irhMatch-
Node
lenovoyoga_s730-13iml_firmwareRange<brcn20ww
AND
lenovoyoga_s730-13imlMatch-
Node
lenovoyoga_s940-14iil_firmwareRange<bqcn34ww
AND
lenovoyoga_s940-14iilMatch-
Node
lenovoyoga_slim_7_pro-14ach5_firmwareRange<gzcn29ww
AND
lenovoyoga_slim_7_pro-14ach5Match-
Node
lenovoyoga_slim_7_pro-14ach5_o_firmwareRange<gzcn29ww
AND
lenovoyoga_slim_7_pro-14ach5_oMatch-
Node
lenovoyoga_slim_7_pro-14arh5_firmwareRange<gzcn24ww
AND
lenovoyoga_slim_7_pro-14arh5Match-
Node
lenovoideapad_5-15alc05_firmwareRange<h2cn27ww
AND
lenovoideapad_5-15alc05Match-

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "BIOS",
    "vendor": "Lenovo",
    "versions": [
      {
        "status": "affected",
        "version": "various"
      }
    ]
  }
]

Related

nvd 1
prion 1
cvelist 1
thn 2
nvd
nvd
CVE-2022-1892
2023-01-26 21:15:25
prion
prion
Buffer overflow
2023-01-26 21:15:00
cvelist
cvelist
CVE-2022-1892
2023-01-23 15:31:19
thn
thn
New UEFI Firmware Vulnerabilities Impact Several Lenovo Notebook Models
2022-07-13 11:47:00
New UEFI Firmware Flaws Reported in Several Lenovo Notebook Models
2022-11-10 06:36:00

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

8 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON
Related for CVE-2022-1892
nvd1prion1cvelist1thn2