CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-3431

A potential vulnerability in a driver used during manufacturing process on some consumer Lenovo Notebook devices that was mistakenly not deactivated may allow an attacker with elevated privileges to modify secure boot setting by modifying an NVRAM variable.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 7.8%

CVSS Severity

CVSS v3 Score 6.7

References

Products affected by CVE-2022-3431

Lenovo » D330-10igl » Version: N/A

cpe:2.3:h:lenovo:d330-10igl:-
Lenovo » Ideapad 5 Pro-16ach6 » Version: N/A

cpe:2.3:h:lenovo:ideapad_5_pro-16ach6:-
Lenovo » Ideapad 5 Pro-16ihu6 » Version: N/A

cpe:2.3:h:lenovo:ideapad_5_pro-16ihu6:-
Lenovo » Ideapad 5 Pro 16arh7 » Version: N/A

cpe:2.3:h:lenovo:ideapad_5_pro_16arh7:-
Lenovo » Ideapad Creator 5-16ach6 » Version: N/A

cpe:2.3:h:lenovo:ideapad_creator_5-16ach6:-
Lenovo » Ideapad Duet 3 10igl5 » Version: N/A

cpe:2.3:h:lenovo:ideapad_duet_3_10igl5:-
Lenovo » Ideapad Slim 7 Pro 16ach6 » Version: N/A

cpe:2.3:h:lenovo:ideapad_slim_7_pro_16ach6:-
Lenovo » S540-15iml » Version: N/A

cpe:2.3:h:lenovo:s540-15iml:-
Lenovo » Slim 7 16arh7 » Version: N/A

cpe:2.3:h:lenovo:slim_7_16arh7:-
Lenovo » Thinkbook 13x Itg » Version: N/A

cpe:2.3:h:lenovo:thinkbook_13x_itg:-
Lenovo » Thinkbook 14 G4+ Ara » Version: N/A

cpe:2.3:h:lenovo:thinkbook_14_g4+_ara:-
Lenovo » Thinkbook 14 G4+ Iap » Version: N/A

cpe:2.3:h:lenovo:thinkbook_14_g4+_iap:-
Lenovo » Thinkbook 16 G4+ Ara » Version: N/A

cpe:2.3:h:lenovo:thinkbook_16_g4+_ara:-
Lenovo » Thinkbook 16 G4+ Iap » Version: N/A

cpe:2.3:h:lenovo:thinkbook_16_g4+_iap:-
Lenovo » Thinkbook 16p Nx Arh » Version: N/A

cpe:2.3:h:lenovo:thinkbook_16p_nx_arh:-
Lenovo » Thinkbook Plus G2 Itg » Version: N/A

cpe:2.3:h:lenovo:thinkbook_plus_g2_itg:-
Lenovo » Thinkbook Plus G3 Iap » Version: N/A

cpe:2.3:h:lenovo:thinkbook_plus_g3_iap:-
Lenovo » Yoga Duet 7-13iml05 » Version: N/A

cpe:2.3:h:lenovo:yoga_duet_7-13iml05:-
Lenovo » Yoga Duet 7-13itl6-Lte » Version: N/A

cpe:2.3:h:lenovo:yoga_duet_7-13itl6-lte:-
Lenovo » Yoga Duet 7-13itl6 » Version: N/A

cpe:2.3:h:lenovo:yoga_duet_7-13itl6:-
Lenovo » Yoga Slim 7-13acn05 » Version: N/A

cpe:2.3:h:lenovo:yoga_slim_7-13acn05:-
Lenovo » Yoga Slim 7-13itl05 » Version: N/A

cpe:2.3:h:lenovo:yoga_slim_7-13itl05:-
Lenovo » Yoga Slim 7 Carbon 13itl5 » Version: N/A

cpe:2.3:h:lenovo:yoga_slim_7_carbon_13itl5:-
Lenovo » Yoga Slim 7 Pro 16ach6 » Version: N/A

cpe:2.3:h:lenovo:yoga_slim_7_pro_16ach6:-
Lenovo » Yoga Slim 7 Pro 16arh7 » Version: N/A

cpe:2.3:h:lenovo:yoga_slim_7_pro_16arh7:-
Lenovo » D330-10igl Firmware » Version: N/A

cpe:2.3:o:lenovo:d330-10igl_firmware:-
Lenovo » Ideapad 5 Pro-16ach6 Firmware » Version: Any

cpe:2.3:o:lenovo:ideapad_5_pro-16ach6_firmware:*
Lenovo » Ideapad 5 Pro-16ihu6 Firmware » Version: N/A

cpe:2.3:o:lenovo:ideapad_5_pro-16ihu6_firmware:-
Lenovo » Ideapad 5 Pro 16arh7 Firmware » Version: N/A

cpe:2.3:o:lenovo:ideapad_5_pro_16arh7_firmware:-
Lenovo » Ideapad Creator 5-16ach6 Firmware » Version: Any

cpe:2.3:o:lenovo:ideapad_creator_5-16ach6_firmware:*
Lenovo » Ideapad Duet 3 10igl5 Firmware » Version: N/A

cpe:2.3:o:lenovo:ideapad_duet_3_10igl5_firmware:-
Lenovo » Ideapad Slim 7 Pro 16ach6 Firmware » Version: Any

cpe:2.3:o:lenovo:ideapad_slim_7_pro_16ach6_firmware:*
Lenovo » S540-15iml Firmware » Version: N/A

cpe:2.3:o:lenovo:s540-15iml_firmware:-
Lenovo » Slim 7 16arh7 Firmware » Version: N/A

cpe:2.3:o:lenovo:slim_7_16arh7_firmware:-
Lenovo » Thinkbook 13x Itg Firmware » Version: N/A

cpe:2.3:o:lenovo:thinkbook_13x_itg_firmware:-
Lenovo » Thinkbook 14 G4+ Ara Firmware » Version: N/A

cpe:2.3:o:lenovo:thinkbook_14_g4+_ara_firmware:-
Lenovo » Thinkbook 14 G4+ Iap Firmware » Version: N/A

cpe:2.3:o:lenovo:thinkbook_14_g4+_iap_firmware:-
Lenovo » Thinkbook 16 G4+ Ara Firmware » Version: N/A

cpe:2.3:o:lenovo:thinkbook_16_g4+_ara_firmware:-
Lenovo » Thinkbook 16 G4+ Iap Firmware » Version: N/A

cpe:2.3:o:lenovo:thinkbook_16_g4+_iap_firmware:-
Lenovo » Thinkbook 16p Nx Arh Firmware » Version: N/A

cpe:2.3:o:lenovo:thinkbook_16p_nx_arh_firmware:-
Lenovo » Thinkbook Plus G2 Itg Firmware » Version: N/A

cpe:2.3:o:lenovo:thinkbook_plus_g2_itg_firmware:-
Lenovo » Thinkbook Plus G3 Iap Firmware » Version: N/A

cpe:2.3:o:lenovo:thinkbook_plus_g3_iap_firmware:-
Lenovo » Yoga Duet 7-13iml05 Firmware » Version: N/A

cpe:2.3:o:lenovo:yoga_duet_7-13iml05_firmware:-
Lenovo » Yoga Duet 7-13itl6-Lte Firmware » Version: N/A

cpe:2.3:o:lenovo:yoga_duet_7-13itl6-lte_firmware:-
Lenovo » Yoga Duet 7-13itl6 Firmware » Version: N/A

cpe:2.3:o:lenovo:yoga_duet_7-13itl6_firmware:-
Lenovo » Yoga Slim 7-13acn05 Firmware » Version: Any

cpe:2.3:o:lenovo:yoga_slim_7-13acn05_firmware:*
Lenovo » Yoga Slim 7-13itl05 Firmware » Version: Any

cpe:2.3:o:lenovo:yoga_slim_7-13itl05_firmware:*
Lenovo » Yoga Slim 7 Carbon 13itl5 Firmware » Version: N/A

cpe:2.3:o:lenovo:yoga_slim_7_carbon_13itl5_firmware:-
Lenovo » Yoga Slim 7 Pro 16ach6 Firmware » Version: Any

cpe:2.3:o:lenovo:yoga_slim_7_pro_16ach6_firmware:*
Lenovo » Yoga Slim 7 Pro 16arh7 Firmware » Version: N/A

cpe:2.3:o:lenovo:yoga_slim_7_pro_16arh7_firmware:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-3431

Products

Pricing

Contact Us