Vulnerabilities > CVE-2021-4210 - Unspecified vulnerability in Lenovo products

047910
CVSS 7.2 - HIGH
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
COMPLETE
Integrity impact
COMPLETE
Availability impact
COMPLETE
local
low complexity
lenovo

Summary

A potential vulnerability in the SMI callback function used in the NVME driver in some Lenovo Desktop, ThinkStation, and ThinkEdge models may allow an attacker with local access and elevated privileges to execute arbitrary code.

Vulnerable Configurations

Part Description Count
OS
Lenovo
32
Hardware
Lenovo
32