CVE-2016-5247 Information

Description

The BIOS for Lenovo ThinkCentre E93 M6500t/s M6600 M6600q M6600t/s M73p M800 M83 M8500t/s M8600t/s M900 M93 and M93P devices; ThinkServer RQ940 RS140 TS140 TS240 TS440 and TS540 devices; and ThinkStation E32 P300 and P310 devices might allow local users or physically proximate attackers to bypass the Secure Boot protection mechanism by leveraging an AMI test key.

CVSS Vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Reference

http://www.securityfocus.com/bid/92661 https://support.lenovo.com/product_security/PS500067

Attack Complexity

LOW

Privileges Required

LOW

User Interaction Required

LOW

Scope

NONE

Confidentiality Impact

UNCHANGED

Integrity Impact

HIGH

Availability Impact

HIGH

Base Score

HIGH

Base Severity

7.8