Unintended Activation of Secure Boot Modification Vulnerability in Ideapad Y700-14ISK Manufacturing Driver

Unintended Activation of Secure Boot Modification Vulnerability in Ideapad Y700-14ISK Manufacturing Driver

CVE-2022-3432 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

A potential vulnerability in a driver used during manufacturing process on the Ideapad Y700-14ISK that was mistakenly not deactivated may allow an attacker with elevated privileges to modify secure boot setting by modifying an NVRAM variable.

Learn more about our Web Application Penetration Testing UK.