Headline
CVE-2022-3430: Lenovo Notebook BIOS Vulnerabilities - Lenovo Support US
A potential vulnerability in the WMI Setup driver on some consumer Lenovo Notebook devices may allow an attacker with elevated privileges to modify secure boot setting by modifying an NVRAM variable.
About Lenovo
- Our Company
- News
- Investor Relations
- Sustainability
- Product Compliance
- Product Security
- Lenovo Open Source
- Legal Information
- Jobs at Lenovo
Shop
- Laptops & Ultrabooks
- Tablets
- Desktops & All-in-Ones
- Workstations
- Accessories & Software
- Servers
- Storage
- Networking
- Laptop Deals
- Outlet
Support
- Drivers & Software
- How To’s
- Warranty Lookup
- Parts Lookup
- Contact Us
- Repair Status Check
- Imaging & Security Resources
Resources
- Where to Buy
- Shopping Help
- Sales Order Status
- Product Specifications (PSREF)
- Forums
- Registration
- Product Accessibility
- Environmental Information
- Gaming Community
- LenovoEDU Community
- LenovoPRO Community
© Lenovo.
| | | |
Related news
The manufacturer is working to fix a vulnerability — similar to a previous problem in Lenovo laptops — that allows threat actors to modify or disable Secure Boot settings to load malware.
PC maker Lenovo has addressed yet another set of three shortcomings in the Unified Extensible Firmware Interface (UEFI) firmware affecting several Yoga, IdeaPad, and ThinkBook devices. "The vulnerabilities allow disabling UEFI Secure Boot or restoring factory default Secure Boot databases (incl. dbx): all simply from an OS," Slovak cybersecurity firm ESET explained in a series of tweets. UEFI