A vulnerability has been identified in a signed kernel driver for the BIOS of some ThinkPad systems that can allow an attacker with Windows administrator-level privileges to call System Management Mode (SMM) services. This could lead to a denial of service attack or allow certain BIOS variables or settings to be altered (such as boot sequence). The setting or changing of BIOS passwords is not affected by this vulnerability.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| Lenovo Group Ltd. | ThinkPad systems | affected |
|
Configuration 1 [-]
| AND |
|
No data.
No data.
Project Subscriptions
| Vendors | Products |
|---|---|
|
Lenovo
Subscribe
|
Thinkpad 10 Ella 2
Subscribe
Thinkpad 10 Ella 2 Bios
Subscribe
Thinkpad 11e Beema
Subscribe
Thinkpad 11e Beema Bios
Subscribe
Thinkpad 11e Braswell
Subscribe
Thinkpad 11e Braswell Bios
Subscribe
Thinkpad 11e Broadwell
Subscribe
Thinkpad 11e Broadwell Bios
Subscribe
Thinkpad 11e Skylake
Subscribe
Thinkpad 11e Skylake Bios
Subscribe
Thinkpad 13e
Subscribe
Thinkpad 13e Bios
Subscribe
Thinkpad E450
Subscribe
Thinkpad E450 Bios
Subscribe
Thinkpad E450c
Subscribe
Thinkpad E450c Bios
Subscribe
Thinkpad E455
Subscribe
Thinkpad E455 Bios
Subscribe
Thinkpad E460
Subscribe
Thinkpad E460 Bios
Subscribe
Thinkpad E465
Subscribe
Thinkpad E465 Bios
Subscribe
Thinkpad E550
Subscribe
Thinkpad E550 Bios
Subscribe
Thinkpad E550c
Subscribe
Thinkpad E550c Bios
Subscribe
Thinkpad E555
Subscribe
Thinkpad E555 Bios
Subscribe
Thinkpad E560
Subscribe
Thinkpad E560 Bios
Subscribe
Thinkpad E565
Subscribe
Thinkpad E565 Bios
Subscribe
Thinkpad Edge E440
Subscribe
Thinkpad Edge E440 Bios
Subscribe
Thinkpad Edge E445
Subscribe
Thinkpad Edge E445 Bios
Subscribe
Thinkpad Edge E540
Subscribe
Thinkpad Edge E540 Bios
Subscribe
Thinkpad Edge E545
Subscribe
Thinkpad Edge E545 Bios
Subscribe
Thinkpad Helix 20cg
Subscribe
Thinkpad Helix 20cg Bios
Subscribe
Thinkpad Helix 20ch
Subscribe
Thinkpad Helix 20ch Bios
Subscribe
Thinkpad L440
Subscribe
Thinkpad L440 Bios
Subscribe
Thinkpad L450
Subscribe
Thinkpad L450 Bios
Subscribe
Thinkpad L460
Subscribe
Thinkpad L460 Bios
Subscribe
Thinkpad L540
Subscribe
Thinkpad L540 Bios
Subscribe
Thinkpad L560
Subscribe
Thinkpad L560 Bios
Subscribe
Thinkpad P50
Subscribe
Thinkpad P50 Bios
Subscribe
Thinkpad P50s
Subscribe
Thinkpad P50s Bios
Subscribe
Thinkpad P70
Subscribe
Thinkpad P70 Bios
Subscribe
Thinkpad S1 Yoga 12
Subscribe
Thinkpad S1 Yoga 12 Bios
Subscribe
Thinkpad S1 Yoga Non Vpro
Subscribe
Thinkpad S1 Yoga Non Vpro Bios
Subscribe
Thinkpad S1 Yoga Vpro
Subscribe
Thinkpad S1 Yoga Vpro Bios
Subscribe
Thinkpad S3 S440
Subscribe
Thinkpad S3 S440 Bios
Subscribe
Thinkpad S3 Yoga 14
Subscribe
Thinkpad S3 Yoga 14 Bios
Subscribe
Thinkpad S540
Subscribe
Thinkpad S540 Bios
Subscribe
Thinkpad S5 E560p
Subscribe
Thinkpad S5 E560p Bios
Subscribe
Thinkpad S5 Yoga 15
Subscribe
Thinkpad S5 Yoga 15 Bios
Subscribe
Thinkpad T440
Subscribe
Thinkpad T440 Bios
Subscribe
Thinkpad T440p
Subscribe
Thinkpad T440p Bios
Subscribe
Thinkpad T440s
Subscribe
Thinkpad T440s Bios
Subscribe
Thinkpad T440u
Subscribe
Thinkpad T440u Bios
Subscribe
Thinkpad T450
Subscribe
Thinkpad T450 Bios
Subscribe
Thinkpad T450s
Subscribe
Thinkpad T450s Bios
Subscribe
Thinkpad T460
Subscribe
Thinkpad T460 Bios
Subscribe
Thinkpad T460p
Subscribe
Thinkpad T460p Bios
Subscribe
Thinkpad T460s
Subscribe
Thinkpad T460s Bios
Subscribe
Thinkpad T540
Subscribe
Thinkpad T540 Bios
Subscribe
Thinkpad T540p
Subscribe
Thinkpad T540p Bios
Subscribe
Thinkpad T550
Subscribe
Thinkpad T550 Bios
Subscribe
Thinkpad T560
Subscribe
Thinkpad T560 Bios
Subscribe
Thinkpad Tablet 10
Subscribe
Thinkpad Tablet 10 Bios
Subscribe
Thinkpad Tablet 8
Subscribe
Thinkpad Tablet 8 Bios
Subscribe
Thinkpad W540
Subscribe
Thinkpad W540 Bios
Subscribe
Thinkpad W541
Subscribe
Thinkpad W541 Bios
Subscribe
Thinkpad W550s
Subscribe
Thinkpad W550s Bios
Subscribe
Thinkpad X140e Amd
Subscribe
Thinkpad X140e Amd Bios
Subscribe
Thinkpad X1 Carbon
Subscribe
Thinkpad X1 Carbon 20ax
Subscribe
Thinkpad X1 Carbon 20ax Bios
Subscribe
Thinkpad X1 Carbon 20bx
Subscribe
Thinkpad X1 Carbon 20bx Bios
Subscribe
Thinkpad X1 Carbon Bios
Subscribe
Thinkpad X1 Tablet
Subscribe
Thinkpad X1 Tablet Bios
Subscribe
Thinkpad X1 Yoga
Subscribe
Thinkpad X1 Yoga Bios
Subscribe
Thinkpad X240
Subscribe
Thinkpad X240 Bios
Subscribe
Thinkpad X240s
Subscribe
Thinkpad X240s Bios
Subscribe
Thinkpad X250 Broadwell
Subscribe
Thinkpad X250 Broadwell Bios
Subscribe
Thinkpad X250 Sharkbay
Subscribe
Thinkpad X250 Sharkbay Bios
Subscribe
Thinkpad X260
Subscribe
Thinkpad X260 Bios
Subscribe
Thinkpad Yoga 11e
Subscribe
Thinkpad Yoga 11e Beema
Subscribe
Thinkpad Yoga 11e Beema Bios
Subscribe
Thinkpad Yoga 11e Bios
Subscribe
Thinkpad Yoga 11e Braswell
Subscribe
Thinkpad Yoga 11e Braswell Bios
Subscribe
Thinkpad Yoga 11e Broadwell
Subscribe
Thinkpad Yoga 11e Broadwell Bios
Subscribe
Thinkpad Yoga 11e Skylake
Subscribe
Thinkpad Yoga 11e Skylake Bios
Subscribe
Thinkpad Yoga 14 460 S3
Subscribe
Thinkpad Yoga 14 460 S3 Bios
Subscribe
Thinkpad Yoga 260 S1
Subscribe
Thinkpad Yoga 260 S1 Bios
Subscribe
|
Advisories
| Source | ID | Title |
|---|---|---|
 EUVD |
EUVD-2016-9070 | A vulnerability has been identified in a signed kernel driver for the BIOS of some ThinkPad systems that can allow an attacker with Windows administrator-level privileges to call System Management Mode (SMM) services. This could lead to a denial of service attack or allow certain BIOS variables or settings to be altered (such as boot sequence). The setting or changing of BIOS passwords is not affected by this vulnerability. |
Fixes
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
References
History
No history.
Projects
Sign in to view the affected projects.
MITRE
Status: PUBLISHED
Assigner: lenovo
Published:
Updated: 2024-08-06T02:13:21.830Z
Reserved: 2016-09-16T00:00:00
Link: CVE-2016-8222
Vulnrichment
No data.
NVD
Status : Deferred
Published: 2016-11-30T15:59:00.173
Modified: 2025-04-12T10:46:40.837
Link: CVE-2016-8222
Redhat
No data.
OpenCVE Enrichment
No data.
Weaknesses