CVE-2021-3897
CVE-2021-3897 describes an authentication bypass in internal services of Lenovo’s Lenovo Fan Power Controller2 (FPC2) and Lenovo System Management Module (SMM) firmware, with SMM2 reportedly not affected. Multiple connected sources confirm the vulnerability could allow an unauthenticated attacker...