Security Advisory

CVE-2021-3972

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-04-22 20:30:40

Last updated 2024-08-03 17:09:09

Assigner lenovo

State PUBLISHED

Description

A potential vulnerability by a driver used during manufacturing process on some consumer Lenovo Notebook devices BIOS that was mistakenly not deactivated may allow an attacker with elevated privileges to modify secure boot setting by modifying an NVRAM variable.

← Browse all CVEs View on cve.org ↗