cbcvebase.
CVE-2021-3971
published 2022-04-22

CVE-2021-3971: A potential vulnerability by a driver used during older manufacturing processes on some consumer Lenovo Notebook devices that was mistakenly included in the…

medium6.7CVSS 3.1
AVLACLPRHUINSUCHIHAH
A potential vulnerability by a driver used during older manufacturing processes on some consumer Lenovo Notebook devices that was mistakenly included in the BIOS image could allow an attacker with elevated privileges to modify firmware protection region by modifying an NVRAM variable.

Affected

74 ranges· showing 25
VendorProductVersion rangeFixed in
lenovoideapad_3-14ada05_firmware< e8cn33wwe8cn33ww
lenovoideapad_3-14ada6_firmware< hbcn21wwhbcn21ww
lenovoideapad_3-14alc6_firmware< glcn43wwglcn43ww
lenovoideapad_3-14are05_firmware< dzcn42wwdzcn42ww
lenovoideapad_3-14igl05_firmware< emcn52wwemcn52ww
lenovoideapad_3-14iil05_firmware< dvcn23wwdvcn23ww
lenovoideapad_3-15ada05_firmware< e8cn33wwe8cn33ww
lenovoideapad_3-15ada6_firmware< hbcn21wwhbcn21ww
lenovoideapad_3-15alc6_firmware< glcn43wwglcn43ww
lenovoideapad_3-15are05_firmware< dzcn42wwdzcn42ww
lenovoideapad_3-15igl05_firmware< dvcn23wwdvcn23ww
lenovoideapad_3-15iil05_firmware< emcn52wwemcn52ww
lenovoideapad_3-17ada05_firmware< e8cn33wwe8cn33ww
lenovoideapad_3-17ada6_firmware< hbcn21wwhbcn21ww
lenovoideapad_3-17alc6_firmware< glcn43wwglcn43ww
lenovoideapad_3-17are05_firmware< dzcn42wwdzcn42ww
lenovoideapad_3-17iil05_firmware< emcn52wwemcn52ww
lenovoideapad_5-15are05_firmware< e7cn44wwe7cn44ww
lenovoideapad_creator_5-15imh05_firmware< egcn36wwegcn36ww
lenovoideapad_gaming_3-15arh05_firmware< fccn17wwfccn17ww
lenovoideapad_gaming_3-15imh05_firmware< egcn36wwegcn36ww
lenovol3-15itl6_firmware< gfcn23wwgfcn23ww
lenovol340-15irh_firmware< bgcn35wwbgcn35ww
lenovol340-15iwl_firmware< atcn46wwatcn46ww
lenovol340-15iwl_touch_firmware< atcn46wwatcn46ww