Vulnerabilities allowing permanent infections affect 70 Lenovo laptop models

Lenovo

For homeowners of greater than 70 Lenovo laptop models, it’s time as soon as once more to patch the UEFI firmware towards important vulnerabilities that attackers can exploit to put in malware that’s almost unattainable to detect or take away.

The laptop maker on Tuesday launched updates for 3 vulnerabilities that researchers discovered within the UEFI firmware used as well up a bunch of its laptop models, together with the Yoga, ThinkBook, and IdeaPad strains. The firm assigned a medium severity score to the vulnerabilities, that are tracked CVE-2022-1890, CVE-2022-1891, and CVE-2022-1892 and affect the ReadyBootDxe, SystemLoadDefaultDxe, and SystemBootManagerDxe drivers, respectively.

“The vulnerabilities can be exploited to achieve arbitrary code execution in the early phases of the platform boot, possibly allowing the attackers to hijack the OS execution flow and disable some important security features,” safety agency ESET stated. “These vulnerabilities were caused by insufficient validation of DataSize parameter passed to the UEFI Runtime Services function GetVariable. An attacker could create a specially crafted NVRAM variable, causing buffer overflow of the Data buffer in the second GetVariable call.”

Advertisement

The vulnerabilities could be exploited to attain arbitrary code execution within the early phases of the platform boot, presumably allowing the attackers to hijack the OS execution circulate and disable some necessary security measures. 2/6

— ESET analysis (@ESETresearch) July 13, 2022

Short for Unified Extensible Firmware Interface, UEFI is the software program that bridges a pc’s machine firmware with its working system. As the primary piece of software program to run when just about any trendy machine is turned on, it’s the primary hyperlink within the safety chain. Because the UEFI resides in a flash chip on the motherboard, infections are tough to detect and take away. Typical measures similar to wiping the arduous drive and reinstalling the OS don’t have any significant affect as a result of the UEFI an infection will merely reinfect the pc afterward.

Many motherboard-resident flash chips that retailer the UEFI have entry management mechanisms that may be locked through the boot course of to stop unauthorized firmware modifications. It’s not clear if the affected Lenovo models have that functionality. Even in the event that they do, these protections are sometimes turned off, misconfigured, or hampered by vulnerabilities. ESET researchers weren’t instantly accessible to touch upon the necessities for exploits of those explicit vulnerabilities.

In any occasion, homeowners of Lenovo laptops ought to take a minute to examine Wednesday’s advisory to see if their mannequin is weak since firmware updates typically require handbook set up.

LEAVE A REPLY

Please enter your comment!
Please enter your name here

Popular Posts

Together At Last: Titans Promises a Tighter Team and Darker Foes

The Titans have confronted interdimensional demons, assassins and a famously fearsome psychiatrist, however are they ready for what’s coming subsequent? HBO Max’s Titans returns...

Tweet Saying Nets ‘Formally Released Kyrie Irving’ Is Satire

Claim: The Brooklyn Nets launched Kyrie Irving from the NBA crew on Nov. 3, 2022. Rating: On Nov. 3,...

Data intelligence platform Alation bucks economic tendencies, raises $123M

Join us on November 9 to learn to efficiently innovate and obtain effectivity by upskilling and scaling citizen builders on the Low-Code/No-Code Summit. Register...

Medieval II Kingdoms expansion release date revealed

If you’ve been itching for extra Total War gameplay, we’ve received one thing for you. Feral Interactive has lastly revealed the Total War:...