CVE & CISA-KEV Catalog

CVE-2022-3431

MEDIUM
6.7
CVSS v3
NVD

Description

A potential vulnerability in a driver used during manufacturing process on some consumer Lenovo Notebook devices that was mistakenly not deactivated may allow an attacker with elevated privileges to modify secure boot setting by modifying an NVRAM variable.

How to fix

Remediation Available
d330-10igl firmwareNVD
Affected:< g0cn11wwFixed in:g0cn11wwCVE-2022-3431derived from NVD
ideapad 5 pro-16ach6 firmwareNVD
Affected:< gscn34wwFixed in:gscn34wwCVE-2022-3431derived from NVD
ideapad 5 pro-16ihu6 firmwareNVD
Affected:< grcn22wwFixed in:grcn22wwCVE-2022-3431derived from NVD
ideapad 5 pro 16arh7 firmwareNVD
Affected:< j4cn33wwFixed in:j4cn33wwCVE-2022-3431derived from NVD
ideapad creator 5-16ach6 firmwareNVD
Affected:< gscn34wwFixed in:gscn34wwCVE-2022-3431derived from NVD
ideapad duet 3 10igl5 firmwareNVD
Affected:< eqcn37wwFixed in:eqcn37wwCVE-2022-3431derived from NVD
ideapad slim 7 pro 16ach6 firmwareNVD
Affected:< hucn16wwFixed in:hucn16wwCVE-2022-3431derived from NVD
s540-15iml firmwareNVD
Affected:< cncn22wwFixed in:cncn22wwCVE-2022-3431derived from NVD
slim 7 16arh7 firmwareNVD
Affected:< klcn15wwFixed in:klcn15wwCVE-2022-3431derived from NVD
thinkbook 13x itg firmwareNVD
Affected:< hlcn30wwFixed in:hlcn30wwCVE-2022-3431derived from NVD
thinkbook 14 g4\+ ara firmwareNVD
Affected:< j6cn40wwFixed in:j6cn40wwCVE-2022-3431derived from NVD
thinkbook 14 g4\+ iap firmwareNVD
Affected:< hycn40wwFixed in:hycn40wwCVE-2022-3431derived from NVD
thinkbook 16 g4\+ ara firmwareNVD
Affected:< j6cn40wwFixed in:j6cn40wwCVE-2022-3431derived from NVD
thinkbook 16 g4\+ iap firmwareNVD
Affected:< hycn40wwFixed in:hycn40wwCVE-2022-3431derived from NVD
thinkbook 16p nx arh firmwareNVD
Affected:< kjcn27wwFixed in:kjcn27wwCVE-2022-3431derived from NVD
thinkbook plus g2 itg firmwareNVD
Affected:< gycn31wwFixed in:gycn31wwCVE-2022-3431derived from NVD
thinkbook plus g3 iap firmwareNVD
Affected:< k6cn29wwFixed in:k6cn29wwCVE-2022-3431derived from NVD
yoga duet 7-13iml05 firmwareNVD
Affected:< ercn30wwFixed in:ercn30wwCVE-2022-3431derived from NVD
yoga duet 7-13itl6-lte firmwareNVD
Affected:< gpcn24wwFixed in:gpcn24wwCVE-2022-3431derived from NVD
yoga duet 7-13itl6 firmwareNVD
Affected:< gpcn24wwFixed in:gpcn24wwCVE-2022-3431derived from NVD
yoga slim 7-13acn05 firmwareNVD
Affected:< ghcn28wwFixed in:ghcn28wwCVE-2022-3431derived from NVD
yoga slim 7-13itl05 firmwareNVD
Affected:< f7cn39wwFixed in:f7cn39wwCVE-2022-3431derived from NVD
yoga slim 7 carbon 13itl5 firmwareNVD
Affected:< f7cn39wwFixed in:f7cn39wwCVE-2022-3431derived from NVD
yoga slim 7 pro 16ach6 firmwareNVD
Affected:< hucn16wwFixed in:hucn16wwCVE-2022-3431derived from NVD
yoga slim 7 pro 16arh7 firmwareNVD
Affected:< klcn15wwFixed in:klcn15wwCVE-2022-3431derived from NVD

Remediation is compiled from vendor and distribution security advisories. Always confirm against the linked source for your exact version and platform.

CVSS v3 Vector

Exploitability

Attack VectorLocal
Attack ComplexityLow
Privileges RequiredHigh
User InteractionNone
ScopeUnchanged

Impact

ConfidentialityHigh
IntegrityHigh
AvailabilityHigh

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Exploit Intelligence

0.21%probability of exploitation in 30 days
11thpercentile

Low risk: more likely to be exploited than 11% of all known CVEs.

References

Vendor Advisory1

Related Vulnerabilities

Other CWE-276 vulnerabilities, ordered by exploit likelihood. View all

CVESeverityCVSSEPSSExploitedFix
CVE-2013-0632Critical9.894%KEV-
CVE-2017-11610High8.888%-Fix
CVE-2023-29919Critical9.160%--
CVE-2019-17124Critical9.823%--
CVE-2020-12608High7.822%-Fix
CVE-2021-3437Critical9.816%-Fix
Embed a live status badge for CVE-2022-3431
CVE-2022-3431 severity badge

Markdown

[![CVE-2022-3431](https://tridentstack.com/cve/badge/CVE-2022-3431.svg)](https://tridentstack.com/cve/CVE-2022-3431)

HTML

<a href="https://tridentstack.com/cve/CVE-2022-3431"><img src="https://tridentstack.com/cve/badge/CVE-2022-3431.svg" alt="CVE-2022-3431"></a>

Find and fix vulnerabilities across your fleet

TridentStack Control continuously scans your Windows, macOS, and Linux fleet for known vulnerabilities, prioritizes them by severity and active exploitation, and patches them automatically.

Start free

This product uses NVD data but is not endorsed or certified by the NVD. EPSS scores courtesy of FIRST.org (https://www.first.org/epss). Source: CISA KEV Catalog. Data as of 2024-11-21.