Race condition

2017-08-1000:29:00

PRIOn knowledge base

www.prio-n.com

6.5 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

30.5%

JSON

A vulnerability has been identified in some Lenovo products that use UEFI (BIOS) code developed by American Megatrends, Inc. (AMI). With this vulnerability, conditions exist where an attacker with administrative privileges or physical access to a system may be able to run specially crafted code that can allow them to bypass system protections such as Device Guard and Hyper-V.

CPENameOperatorVersion
63_firmwareeq78.0.0-a-fckt
h50-30g_firmwareeq78.0.0-a-fckt
ideacentre_510s-23isu_firmwareeq2ekt24a-o
m4500_firmwareeq78.0.0-a-fckt
m4500_id_firmwareeq78.0.0-a-fckt
m4550_id_firmwareeq78.0.0-a-fckt
s200z_firmwareeq9kt33a-m
s500_firmwareeq0kkt24a-m
thinkcentre_e73_firmwareeq78.0.0-a-fckt
thinkcentre_e73s_firmwareeq78.0.0-a-fckt

Name	Operator	Version
63_firmware	eq	78.0.0-a-fckt
h50-30g_firmware	eq	78.0.0-a-fckt
ideacentre_510s-23isu_firmware	eq	2ekt24a-o
m4500_firmware	eq	78.0.0-a-fckt
m4500_id_firmware	eq	78.0.0-a-fckt
m4550_id_firmware	eq	78.0.0-a-fckt
s200z_firmware	eq	9kt33a-m
s500_firmware	eq	0kkt24a-m
thinkcentre_e73_firmware	eq	78.0.0-a-fckt
thinkcentre_e73s_firmware	eq	78.0.0-a-fckt