CVE-2021-3718 - OpenCVE

A denial of service vulnerability was reported in some ThinkPad models that could cause a system to crash when the Enhanced Biometrics setting is enabled in BIOS.

Attack Vector Physical

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

Access Vector Local

Access Complexity Medium

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Complete

AV:L/AC:M/Au:N/C:N/I:N/A:C

Vendors & Products
CPE Configurations

Vendors	Products
Lenovo	Thinkpad 11e 4th Gen Celeron Thinkpad L15 Thinkpad T460 Thinkpad P52 Thinkpad E590 Firmware Thinkpad L590 Thinkpad 11e Yoga Gen 6 Firmware Thinkpad L380 Yoga Thinkpad T590 Firmware Thinkpad L13 Yoga Gen 2 Thinkpad 11e 5th Gen Firmware Thinkpad L13 Gen 2 Firmware Thinkpad X12 Detachable Gen 1 Thinkpad T490 Firmware Thinkpad 13 Gen 2 Thinkpad L390 Firmware Thinkpad E490s Thinkpad X260 Firmware Thinkpad L13 Yoga Firmware Thinkpad E490s Firmware Thinkpad E490 Thinkpad T590 Thinkpad 11e 4th Gen Celeron Firmware Thinkpad X390 Yoga Firmware Thinkpad P43s Firmware Thinkpad L490 Thinkpad P72 Thinkpad 11e 4th Gen I7 Thinkpad P53s Thinkpad L14 Thinkpad L14 Gen 1 Thinkpad X390 Yoga Thinkpad L13 Gen 2 Thinkpad 11e 3rd Gen Firmware Thinkpad X380 Yoga Firmware Thinkpad L590 Firmware Thinkpad T460 Firmware Thinkpad E490 Firmware Thinkpad P43s Thinkpad 11e 4th Gen I5 Firmware Thinkpad 11e 4th Gen I3 Firmware Thinkpad L390 Yoga Firmware Thinkpad L13 Firmware Thinkpad L380 Thinkpad S5 2nd Gen Firmware Thinkpad 11e Yoga Gen 6 Thinkpad L15 Gen 1 Thinkpad L390 Thinkpad L380 Firmware Thinkpad E590 Thinkpad S5 2nd Gen Thinkpad L14 Gen 1 Firmware Thinkpad S2 Yoga Gen 6 Thinkpad S2 Gen 6 Thinkpad P52 Firmware Thinkpad T490 Thinkpad L15 Firmware Thinkpad L14 Firmware Thinkpad P72 Firmware Thinkpad X12 Detachable Gen 1 Firmware Thinkpad L13 Yoga Thinkpad L380 Yoga Firmware Thinkpad 13 Gen 2 Firmware Thinkpad 11e 5th Gen Thinkpad 11e 4th Gen I5 Thinkpad 11e 4th Gen I3 Thinkpad L13 Thinkpad L490 Firmware Thinkpad X260 Thinkpad L15 Gen 1 Firmware Thinkpad X380 Yoga Thinkpad 11e 3rd Gen Thinkpad 11e 4th Gen I7 Firmware Thinkpad S2 Yoga Gen 6 Firmware Thinkpad Yoga 370 Thinkpad L13 Yoga Gen 2 Firmware Thinkpad S2 Gen 6 Firmware Thinkpad P53s Firmware Thinkpad L390 Yoga
Microsoft	Windows 10 Windows 7 Windows 8.1
Linux	Linux Kernel

Configuration 1 [-]

AND

cpe:2.3:o:lenovo:thinkpad_11e_3rd_gen_firmware:*:*:*:*:braswell:*:*:*

OR	cpe:2.3:h:lenovo:thinkpad_11e_3rd_gen:-:::::::*
	cpe:2.3:o:microsoft:windows_10:-:::::::*
	cpe:2.3:o:microsoft:windows_7:-::::::x64:
	cpe:2.3:o:microsoft:windows_8.1:-:::::::*

Configuration 2 [-]

AND

cpe:2.3:o:lenovo:thinkpad_11e_3rd_gen_firmware:*:*:*:*:skylate:*:*:*

OR	cpe:2.3:h:lenovo:thinkpad_11e_3rd_gen:-:::::::*
	cpe:2.3:o:microsoft:windows_10:-:::::::*
	cpe:2.3:o:microsoft:windows_7:-::::::x64:
	cpe:2.3:o:microsoft:windows_8.1:-:::::::*

Configuration 3 [-]

AND

cpe:2.3:o:lenovo:thinkpad_11e_4th_gen_i3_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:lenovo:thinkpad_11e_4th_gen_i3:-:::::::*
	cpe:2.3:o:microsoft:windows_10:-:::::::*

Configuration 4 [-]

AND

cpe:2.3:o:lenovo:thinkpad_11e_4th_gen_i7_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:lenovo:thinkpad_11e_4th_gen_i7:-:::::::*
	cpe:2.3:o:microsoft:windows_10:-:::::::*

Configuration 5 [-]

AND

cpe:2.3:o:lenovo:thinkpad_11e_4th_gen_i5_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:lenovo:thinkpad_11e_4th_gen_i5:-:::::::*
	cpe:2.3:o:microsoft:windows_10:-:::::::*

Configuration 6 [-]

AND

cpe:2.3:o:lenovo:thinkpad_11e_4th_gen_celeron_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:lenovo:thinkpad_11e_4th_gen_celeron:-:::::::*
	cpe:2.3:o:microsoft:windows_10:-::::::x64:

Configuration 7 [-]

AND

cpe:2.3:o:lenovo:thinkpad_11e_yoga_gen_6_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:lenovo:thinkpad_11e_yoga_gen_6:-:::::::*
	cpe:2.3:o:microsoft:windows_10:-::::::x64:

Configuration 8 [-]

AND

cpe:2.3:o:lenovo:thinkpad_13_gen_2_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:lenovo:thinkpad_13_gen_2:-:::::::*
	cpe:2.3:o:microsoft:windows_10:-::::::x64:

Configuration 9 [-]

AND

cpe:2.3:o:lenovo:thinkpad_e490_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:lenovo:thinkpad_e490:-:::::::*
	cpe:2.3:o:microsoft:windows_10:-::::::x64:

Configuration 10 [-]

AND

cpe:2.3:o:lenovo:thinkpad_e490s_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:lenovo:thinkpad_e490s:-:::::::*
	cpe:2.3:o:microsoft:windows_10:-::::::x64:

Configuration 11 [-]

AND

cpe:2.3:o:lenovo:thinkpad_e590_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:lenovo:thinkpad_e590:-:::::::*
	cpe:2.3:o:microsoft:windows_10:-::::::x64:

Configuration 12 [-]

AND

cpe:2.3:o:lenovo:thinkpad_l13_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:lenovo:thinkpad_l13:-:::::::*
	cpe:2.3:o:microsoft:windows_10:-::::::x64:

Configuration 13 [-]

AND

cpe:2.3:o:lenovo:thinkpad_l13_gen_2_firmware:*:*:*:*:non-vpro:*:*:*

OR	cpe:2.3:h:lenovo:thinkpad_l13_gen_2:-:::::::*
	cpe:2.3:o:microsoft:windows_10:-::::::x64:

Configuration 14 [-]

AND

cpe:2.3:o:lenovo:thinkpad_l13_gen_2_firmware:*:*:*:*:vpro:*:*:*

OR	cpe:2.3:h:lenovo:thinkpad_l13_gen_2:-:::::::*
	cpe:2.3:o:microsoft:windows_10:-::::::x64:

Configuration 15 [-]

AND

cpe:2.3:o:lenovo:thinkpad_l13_yoga_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:lenovo:thinkpad_l13_yoga:-:::::::*
	cpe:2.3:o:microsoft:windows_10:-::::::x64:

Configuration 16 [-]

AND

cpe:2.3:o:lenovo:thinkpad_l13_yoga_gen_2_firmware:*:*:*:*:non-vpro:*:*:*

OR	cpe:2.3:h:lenovo:thinkpad_l13_yoga_gen_2:-:::::::*
	cpe:2.3:o:microsoft:windows_10:-::::::x64:

Configuration 17 [-]

AND

cpe:2.3:o:lenovo:thinkpad_l13_yoga_gen_2_firmware:*:*:*:*:vpro:*:*:*

OR	cpe:2.3:h:lenovo:thinkpad_l13_yoga_gen_2:-:::::::*
	cpe:2.3:o:microsoft:windows_10:-::::::x64:

Configuration 18 [-]

AND

cpe:2.3:o:lenovo:thinkpad_l14_gen_1_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:lenovo:thinkpad_l14_gen_1:-:::::::*
	cpe:2.3:o:linux:linux_kernel:-:::::::*
	cpe:2.3:o:microsoft:windows_10:-::::::x64:

Configuration 19 [-]

AND

cpe:2.3:o:lenovo:thinkpad_l14_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:lenovo:thinkpad_l14:-:::::::*
	cpe:2.3:o:microsoft:windows_10:-::::::x64:

Configuration 20 [-]

AND

cpe:2.3:o:lenovo:thinkpad_l15_gen_1_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:lenovo:thinkpad_l15_gen_1:-:::::::*
	cpe:2.3:o:linux:linux_kernel:-:::::::*
	cpe:2.3:o:microsoft:windows_10:-::::::x64:

Configuration 21 [-]

AND

cpe:2.3:o:lenovo:thinkpad_l15_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:lenovo:thinkpad_l15:-:::::::*
	cpe:2.3:o:microsoft:windows_10:-::::::x64:

Configuration 22 [-]

AND

cpe:2.3:o:lenovo:thinkpad_l380_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:lenovo:thinkpad_l380:-:::::::*
	cpe:2.3:o:microsoft:windows_10:-::::::x64:

Configuration 23 [-]

AND

cpe:2.3:o:lenovo:thinkpad_l380_yoga_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:lenovo:thinkpad_l380_yoga:-:::::::*
	cpe:2.3:o:microsoft:windows_10:-::::::x64:

Configuration 24 [-]

AND

cpe:2.3:o:lenovo:thinkpad_l390_yoga_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:lenovo:thinkpad_l390_yoga:-:::::::*
	cpe:2.3:o:microsoft:windows_10:-::::::x64:

Configuration 25 [-]

AND

cpe:2.3:o:lenovo:thinkpad_l390_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:lenovo:thinkpad_l390:-:::::::*
	cpe:2.3:o:microsoft:windows_10:-::::::x64:

Configuration 26 [-]

AND

cpe:2.3:o:lenovo:thinkpad_l490_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:lenovo:thinkpad_l490:-:::::::*
	cpe:2.3:o:microsoft:windows_10:-::::::x64:

Configuration 27 [-]

AND

cpe:2.3:o:lenovo:thinkpad_l590_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:lenovo:thinkpad_l590:-:::::::*
	cpe:2.3:o:microsoft:windows_10:-::::::x64:

Configuration 28 [-]

AND

cpe:2.3:o:lenovo:thinkpad_p43s_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:lenovo:thinkpad_p43s:-:::::::*
	cpe:2.3:o:linux:linux_kernel:-:::::::*
	cpe:2.3:o:microsoft:windows_10:-::::::x64:

Configuration 29 [-]

AND

cpe:2.3:o:lenovo:thinkpad_p52_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:lenovo:thinkpad_p52:-:::::::*
	cpe:2.3:o:linux:linux_kernel:-:::::::*
	cpe:2.3:o:microsoft:windows_10:-::::::x64:

Configuration 30 [-]

AND

cpe:2.3:o:lenovo:thinkpad_p53s_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:lenovo:thinkpad_p53s:-:::::::*
	cpe:2.3:o:linux:linux_kernel:-:::::::*
	cpe:2.3:o:microsoft:windows_10:-::::::x64:

Configuration 31 [-]

AND

cpe:2.3:o:lenovo:thinkpad_p72_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:lenovo:thinkpad_p72:-:::::::*
	cpe:2.3:o:linux:linux_kernel:-:::::::*
	cpe:2.3:o:microsoft:windows_10:-::::::x64:

Configuration 32 [-]

AND

cpe:2.3:o:lenovo:thinkpad_s5_2nd_gen_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:lenovo:thinkpad_s5_2nd_gen:-:::::::*
	cpe:2.3:o:microsoft:windows_10:-::::::x64:

Configuration 33 [-]

AND

cpe:2.3:o:lenovo:thinkpad_t460_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:lenovo:thinkpad_t460:-:::::::*
	cpe:2.3:o:microsoft:windows_10:-:::::::*
	cpe:2.3:o:microsoft:windows_7:-::::::x64:
	cpe:2.3:o:microsoft:windows_7:-::::::x86:
	cpe:2.3:o:microsoft:windows_8.1:-:::::::*

Configuration 34 [-]

AND

cpe:2.3:o:lenovo:thinkpad_t490_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:lenovo:thinkpad_t490:-:::::::*
	cpe:2.3:o:linux:linux_kernel:-:::::::*
	cpe:2.3:o:microsoft:windows_10:-::::::x64:

Configuration 35 [-]

AND

cpe:2.3:o:lenovo:thinkpad_t590_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:lenovo:thinkpad_t590:-:::::::*
	cpe:2.3:o:linux:linux_kernel:-:::::::*
	cpe:2.3:o:microsoft:windows_10:-::::::x64:

Configuration 36 [-]

AND

cpe:2.3:o:lenovo:thinkpad_s2_gen_6_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:lenovo:thinkpad_s2_gen_6:-:::::::*
	cpe:2.3:o:microsoft:windows_10:-::::::x64:

Configuration 37 [-]

AND

cpe:2.3:o:lenovo:thinkpad_s2_yoga_gen_6_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:lenovo:thinkpad_s2_yoga_gen_6:-:::::::*
	cpe:2.3:o:microsoft:windows_10:-::::::x64:

Configuration 38 [-]

AND

cpe:2.3:o:lenovo:thinkpad_x12_detachable_gen_1_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:lenovo:thinkpad_x12_detachable_gen_1:-:::::::*
	cpe:2.3:o:microsoft:windows_10:-::::::x64:

Configuration 39 [-]

AND

cpe:2.3:o:lenovo:thinkpad_x260_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:lenovo:thinkpad_x260:-:::::::*
	cpe:2.3:o:microsoft:windows_10:-::::::x64:
	cpe:2.3:o:microsoft:windows_7:-:::::::*

Configuration 40 [-]

AND

cpe:2.3:o:lenovo:thinkpad_x380_yoga_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:lenovo:thinkpad_x380_yoga:-:::::::*
	cpe:2.3:o:microsoft:windows_10:-::::::x64:

Configuration 41 [-]

AND

cpe:2.3:o:lenovo:thinkpad_x390_yoga_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:lenovo:thinkpad_x390_yoga:-:::::::*
	cpe:2.3:o:linux:linux_kernel:-:::::::*
	cpe:2.3:o:microsoft:windows_10:-::::::x64:

Configuration 42 [-]

AND

cpe:2.3:o:lenovo:thinkpad_11e_5th_gen_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:lenovo:thinkpad_11e_5th_gen:-:::::::*
	cpe:2.3:o:microsoft:windows_10:-::::::x64:

Configuration 43 [-]

AND

cpe:2.3:o:lenovo:thinkpad_11e_5th_gen_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:lenovo:thinkpad_yoga_370:-:::::::*
	cpe:2.3:o:microsoft:windows_10:-::::::x64:

References

Link	Resource
https://support.lenovo.com/us/en/product_security/LEN-72619	Vendor Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: lenovo

Published: 2021-11-12T22:05:34

Updated: 2021-11-12T22:05:34

Reserved: 2021-08-18T00:00:00

Link: CVE-2021-3718

JSON object: View

NVD Information

Status : Analyzed

Published: 2021-11-12T22:15:07.903

Modified: 2021-11-23T14:50:22.143

Link: CVE-2021-3718

JSON object: View

Redhat Information

No data.

CWE