SMI Handler Information Leak Vulnerability in Lenovo Models

SMI Handler Information Leak Vulnerability in Lenovo Models

CVE-2022-40136 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

An information leak vulnerability in SMI Handler used to configure platform settings over WMI in some Lenovo models may allow an attacker with local access and elevated privileges to read SMM memory.

Learn more about our Web Application Penetration Testing UK.