Vulnerability Details CVE-2018-9069
In some Lenovo IdeaPad consumer notebook models, a race condition in the BIOS flash device locking mechanism is not adequately protected against, potentially allowing an attacker with administrator access to alter the contents of BIOS.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 44.0%
CVSS Severity
CVSS v3 Score 5.9
CVSS v2 Score 7.0
References
Products affected by CVE-2018-9069
-
cpe:2.3:h:hp:310s-14isk:-
-
cpe:2.3:h:hp:320-15ikbra:-
-
cpe:2.3:h:hp:320-15ikbrn:-
-
cpe:2.3:h:hp:320-15ikbrn_touch:-
-
cpe:2.3:h:hp:320-17ikbrn:-
-
cpe:2.3:h:hp:320s-14ikb:-
-
cpe:2.3:h:hp:320s-15ikb:-
-
cpe:2.3:h:hp:320s-15isk:-
-
cpe:2.3:h:hp:510s-14isk:-
-
cpe:2.3:h:hp:520-15ikbrn:-
-
cpe:2.3:h:hp:520s-14ikb:-
-
cpe:2.3:h:hp:7000-15_u42:-
-
cpe:2.3:h:hp:7000_u42:-
-
cpe:2.3:h:hp:710s_plus-13ikb_16g:-
-
cpe:2.3:h:hp:710s_plus-3ikb:-
-
cpe:2.3:h:hp:710s_plus_touch-13ikb:-
-
cpe:2.3:h:hp:720s-13ikb:-
-
cpe:2.3:h:hp:b320-14ikb:-
-
cpe:2.3:h:hp:e42-80:-
-
cpe:2.3:h:hp:e43-80_kbl:-
-
cpe:2.3:h:hp:e52-80:-
-
cpe:2.3:h:hp:flex_4-1470:-
-
cpe:2.3:h:hp:flex_5-1470:-
-
cpe:2.3:h:hp:flex_5-1570:-
-
cpe:2.3:h:hp:ideapad_2in1_14:-
-
cpe:2.3:h:hp:lenovo_ideapad_320-14ikb(i+a):-
-
cpe:2.3:h:hp:lenovo_ideapad_320-14ikb(i+n):-
-
cpe:2.3:h:hp:lenovo_ideapad_320-15abr:-
-
cpe:2.3:h:hp:lenovo_ideapad_320-15ikb(i+n):-
-
cpe:2.3:h:hp:lenovo_ideapad_320s-14ikbr:-
-
cpe:2.3:h:hp:lenovo_ideapad_320s-15ikbr:-
-
cpe:2.3:h:hp:lenovo_ideapad_520s-14ikbr:-
-
cpe:2.3:h:hp:lenovo_ideapad_720s-14ikb:-
-
cpe:2.3:h:hp:lenovo_ideapad_flex_5-1470:-
-
cpe:2.3:h:hp:lenovo_ideapad_flex_5-1570:-
-
cpe:2.3:h:hp:lenovo_ideapad_y520-15ikbn:-
-
cpe:2.3:h:hp:lenovo_tianyi_310-14ikb:-
-
cpe:2.3:h:hp:lenovo_tianyi_310-15ikb:-
-
cpe:2.3:h:hp:lenovo_v720-14:-
-
cpe:2.3:h:hp:lenovo_y520-15ikba:-
-
cpe:2.3:h:hp:lenovo_y520-15ikbm:-
-
cpe:2.3:h:hp:lenovo_y720-15ikb:-
-
cpe:2.3:h:hp:lenovo_yoga_520-14ikb:-
-
cpe:2.3:h:hp:lenovo_yoga_520-15ikb:-
-
cpe:2.3:h:hp:miix_720-12ikb:-
-
cpe:2.3:h:hp:nano110-14ikb:-
-
cpe:2.3:h:hp:nano110-15ikb:-
-
cpe:2.3:h:hp:r720-15ikba:-
-
cpe:2.3:h:hp:r720-15ikbn:-
-
cpe:2.3:h:hp:rescuer_r720-15ikbm:-
-
cpe:2.3:h:hp:rescuer_y520-15ikbm:-
-
cpe:2.3:h:hp:v310-14ikb:-
-
cpe:2.3:h:hp:v310-14isk:-
-
cpe:2.3:h:hp:v310-15ikb:-
-
cpe:2.3:h:hp:v310-15isk:-
-
cpe:2.3:h:hp:v330-14ikb:-
-
cpe:2.3:h:hp:v330-14isk:-
-
cpe:2.3:h:hp:v510-14ikb:-
-
cpe:2.3:h:hp:v510-15ikb:-
-
cpe:2.3:h:hp:xiaoxinair13ikbpro:-
-
cpe:2.3:h:hp:y520-15ikba:-
-
cpe:2.3:h:hp:y520-15ikbn:-
-
cpe:2.3:h:hp:y720-15ikb:-
-
cpe:2.3:h:hp:yoga_310-11iap:-
-
cpe:2.3:h:hp:yoga_510-14isk:-
-
cpe:2.3:h:hp:yoga_720-13ikb:-
-
cpe:2.3:h:hp:yoga_720-13ikbr:-
-
cpe:2.3:h:hp:yoga_720-15ikb:-
-
cpe:2.3:o:hp:310s-14isk_firmware:-
-
cpe:2.3:o:hp:320-15ikbra_firmware:-
-
cpe:2.3:o:hp:320-15ikbrn_firmware:-
-
cpe:2.3:o:hp:320-15ikbrn_touch_firmware:-
-
cpe:2.3:o:hp:320s-15ikb_firmware:-
-
cpe:2.3:o:hp:320s-15isk_firmware:-
-
cpe:2.3:o:hp:510s-14isk_firmware:-
-
cpe:2.3:o:hp:520-15ikbrn_firmware:-
-
cpe:2.3:o:hp:520s-14ikb_firmware:-
-
cpe:2.3:o:hp:7000-15_u42_firmware:-
-
cpe:2.3:o:hp:7000_u42_firmware:-
-
cpe:2.3:o:hp:710s_plus-13ikb_16g_firmware:-
-
cpe:2.3:o:hp:710s_plus-3ikb_firmware:-
-
cpe:2.3:o:hp:710s_plus_touch-13ikb_firmware:-
-
cpe:2.3:o:hp:720s-13ikb_firmware:-
-
cpe:2.3:o:hp:b320-14ikb_firmware:-
-
cpe:2.3:o:hp:e43-80_kbl_firmware:-
-
cpe:2.3:o:hp:flex_4-1470_firmware:-
-
cpe:2.3:o:hp:flex_5-1470_firmware:-
-
cpe:2.3:o:hp:flex_5-1570_firmware:-
-
cpe:2.3:o:hp:ideapad_2in1_14_firmware:-
-
cpe:2.3:o:hp:lenovo_ideapad_320-14ikb(i+a)_firmware:-
-
cpe:2.3:o:hp:lenovo_ideapad_320-14ikb(i+n)_firmware:-
-
cpe:2.3:o:hp:lenovo_ideapad_320-15abr_firmware:-
-
cpe:2.3:o:hp:lenovo_ideapad_320-15ikb(i+n)_firmware:-
-
cpe:2.3:o:hp:lenovo_ideapad_320s-14ikbr_firmware:-
-
cpe:2.3:o:hp:lenovo_ideapad_320s-15ikbr_firmware:-
-
cpe:2.3:o:hp:lenovo_ideapad_520s-14ikbr_firmware:-
-
cpe:2.3:o:hp:lenovo_ideapad_720s-14ikb_firmware:-
-
cpe:2.3:o:hp:lenovo_ideapad_flex_5-1470_firmware:-
-
cpe:2.3:o:hp:lenovo_ideapad_flex_5-1570_firmware:-
-
cpe:2.3:o:hp:lenovo_ideapad_y520-15ikbn_firmware:-
-
cpe:2.3:o:hp:lenovo_tianyi_310-14ikb_firmware:-
-
cpe:2.3:o:hp:lenovo_tianyi_310-15ikb_firmware:-
-
cpe:2.3:o:hp:lenovo_v720-14_firmware:-
-
cpe:2.3:o:hp:lenovo_y520-15ikba_firmware:-
-
cpe:2.3:o:hp:lenovo_y520-15ikbm_firmware:-
-
cpe:2.3:o:hp:lenovo_y720-15ikb_firmware:-
-
cpe:2.3:o:hp:lenovo_yoga_520-14ikb_firmware:-
-
cpe:2.3:o:hp:lenovo_yoga_520-15ikb_firmware:-
-
cpe:2.3:o:hp:nano110-14ikb_firmware:-
-
cpe:2.3:o:hp:nano110-15ikb_firmware:-
-
cpe:2.3:o:hp:r720-15ikba_firmware:-
-
cpe:2.3:o:hp:r720-15ikbn_firmware:-
-
cpe:2.3:o:hp:rescuer_r720-15ikbm_firmware:-
-
cpe:2.3:o:hp:rescuer_y520-15ikbm_firmware:-
-
cpe:2.3:o:hp:v330-14ikb_firmware:-
-
cpe:2.3:o:hp:v330-14isk_firmware:-
-
cpe:2.3:o:hp:xiaoxinair13ikbpro_firmware:-
-
cpe:2.3:o:hp:y520-15ikba_firmware:-
-
cpe:2.3:o:hp:y520-15ikbn_firmware:-
-
cpe:2.3:o:hp:y720-15ikb_firmware:-
-
cpe:2.3:o:hp:yoga_310-11iap_firmware:-
-
cpe:2.3:o:hp:yoga_510-14isk_firmware:-
-
cpe:2.3:o:hp:yoga_720-13ikb_firmware:-
-
cpe:2.3:o:hp:yoga_720-13ikbr_firmware:-
-
cpe:2.3:o:hp:yoga_720-15ikb_firmware:-
-
cpe:2.3:o:lenovo:e42-80_firmware:-
-
cpe:2.3:o:lenovo:e52-80_firmware:-
-
cpe:2.3:o:lenovo:v310-14ikb_firmware:-
-
cpe:2.3:o:lenovo:v310-14isk_firmware:-
-
cpe:2.3:o:lenovo:v310-15ikb_firmware:-
-
cpe:2.3:o:lenovo:v310-15isk_firmware:-
-
cpe:2.3:o:lenovo:v510-14ikb_firmware:-
-
cpe:2.3:o:lenovo:v510-15ikb_firmware:-