Back to search
CVE-2017-3754
Published: Jul 17, 2017
Modified: Sep 16, 2024
PUBLISHED
Description
Some Lenovo brand notebook systems do not have write protections properly configured in the system BIOS. This could enable an attacker with physical or administrative access to a system to be able to flash the BIOS with an arbitrary image and potentially run malicious BIOS code.
| Vendor | Product | Versions |
|---|---|---|
Lenovo Group Ltd. | Lenovo Notebook BIOS | affected Various |
References
https://support.lenovo.com/us/en/product_security/LEN-15084
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now