← back
CVE-2017-3754

CVE-2017-3754

EPSS 0.3%
Some Lenovo brand notebook systems do not have write protections properly configured in the system BIOS. This could enable an attacker with physical or administrative access to a system to be able to flash the BIOS with an arbitrary image and potentially run malicious BIOS code.
Affected products
Lenovo Group Ltd. · Lenovo Notebook BIOS

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://support.lenovo.com/us/en/product_security/LEN-15084