Security News > 2022 > July > New UEFI Firmware Vulnerabilities Impact Several Lenovo Notebook Models

New UEFI Firmware Vulnerabilities Impact Several Lenovo Notebook Models
2022-07-14 08:42

Consumer electronics maker Lenovo on Tuesday rolled out fixes to contain three security flaws in its UEFI firmware affecting over 70 product models.

"The vulnerabilities can be exploited to achieve arbitrary code execution in the early phases of the platform boot, possibly allowing the attackers to hijack the OS execution flow and disable some important security features," Slovak cybersecurity firm ESET said in a series of tweets.

Tracked as CVE-2022-1890, CVE-2022-1891, and CVE-2022-1892, all three bugs relate to buffer overflow vulnerabilities that have been described by Lenovo as leading to privilege escalation on affected systems.

The bugs stem from an insufficient validation of an NVRAM variable called "DataSize" in three different drivers ReadyBootDxe, SystemLoadDefaultDxe, and SystemBootManagerDxe, leading to a buffer overflow that could be weaponized to achieve code execution.

This is the second time Lenovo has moved to address UEFI security vulnerabilities since the start of the year.

In April, the company resolved three flaws - also discovered by Smolár - that could have been abused to deploy and execute firmware implants.


News URL

https://thehackernews.com/2022/07/new-uefi-firmware-vulnerabilities.html

Related Vulnerability

DATE CVE VULNERABILITY TITLE RISK
2023-01-26 CVE-2022-1892 Classic Buffer Overflow vulnerability in Lenovo products
A buffer overflow in the SystemBootManagerDxe driver in some Lenovo Notebook products may allow an attacker with local privileges to execute arbitrary code.
local
low complexity
lenovo CWE-120
7.8
2023-01-26 CVE-2022-1891 Classic Buffer Overflow vulnerability in Lenovo products
A buffer overflow in the SystemLoadDefaultDxe driver in some Lenovo Notebook products may allow an attacker with local privileges to execute arbitrary code.
local
low complexity
lenovo CWE-120
7.8
2023-01-26 CVE-2022-1890 Out-of-bounds Write vulnerability in Lenovo products
A buffer overflow in the ReadyBootDxe driver in some Lenovo Notebook products may allow an attacker with local privileges to execute arbitrary code.
local
low complexity
lenovo CWE-787
7.8

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Lenovo 2278 4 176 156 16 352