CVE-2022-3742

A potential vulnerability was discovered in LCFC BIOS for some Lenovo consumer notebook models that could allow a local attacker with elevated privileges to execute arbitrary code due to improper buffer validation.
Classic Buffer Overflow
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.7 MEDIUM
LOCAL
LOW
HIGH
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
VendorProductVersionSource
lenovoideapad_1_14iau7_firmware
𝑥
< jkcn34ww
ADP
lenovoideapad_1_14igl7_firmware
𝑥
< kkcn15ww
ADP
lenovoideapad_1_15iau7_firmware
𝑥
< jkcn34ww
ADP
lenovoideapad_1_15igl7_firmware
𝑥
< kkcn15ww
ADP
lenovoideapad_1-14ijl7_firmware
𝑥
< htcn31ww
ADP
lenovoideapad_1-15ijl7_firmware
𝑥
< htcn31ww
ADP
lenovoideapad_3_14iau7_firmware
𝑥
< jkcn34ww
ADP
lenovoideapad_3_15iau7_firmware
𝑥
< jkcn34ww
ADP
lenovoideapad_3_17iau7_firmware
𝑥
< jkcn34ww
ADP
lenovoideapad_3-15igl05_firmware
𝑥
< dvcn28ww
ADP
lenovoideapad_3-17iil05_firmware
𝑥
< emcn56ww
ADP
lenovoideapad_3-17itl6_firmware
𝑥
< ggcn51ww
ADP
lenovoideapad_5_15ial7_firmware
𝑥
< jbcn27ww
ADP
lenovoideapad_5-15itl05_firmware
𝑥
< fhcn70ww
ADP
lenovol3-15iml05_firmware
𝑥
< ejcn30ww
ADP
lenovol3-15itl6_firmware
𝑥
< gfcn29ww
ADP
lenovolegion_5_15iah7_firmware
𝑥
< j2cn49ww
ADP
lenovolegion_5_15iah7h_firmware
𝑥
< j2cn49ww
ADP
lenovolegion_5_pro_16iah7_firmware
𝑥
< j2cn49ww
ADP
lenovolegion_5_pro_16iah7h_firmware
𝑥
< j2cn49ww
ADP
lenovolegion_5_pro-16ith6_firmware
𝑥
< h1cn52ww
ADP
lenovolegion_5_pro-16ith6h_firmware
𝑥
< h1cn52ww
ADP
lenovolegion_5-15imh05_firmware
𝑥
< efcn58ww
ADP
lenovolegion_5-15imh05h_firmware
𝑥
< efcn58ww
ADP
lenovolegion_5-15imh6_firmware
𝑥
< g8cn22ww
ADP
lenovolegion_5-15ith6_firmware
𝑥
< h1cn52ww
ADP
lenovolegion_5-15ith6h_firmware
𝑥
< h1cn52ww
ADP
lenovolegion_5-17imh05_firmware
𝑥
< efcn58ww
ADP
lenovolegion_5-17imh05h_firmware
𝑥
< efcn58ww
ADP
lenovolegion_5-17ith6_firmware
𝑥
< h1cn52ww
ADP
lenovolegion_5-17ith6h_firmware
𝑥
< h1cn52ww
ADP
lenovolegion_5p-15imh05_firmware
𝑥
< efcn58ww
ADP
lenovolegion_5p-15imh05h_firmware
𝑥
< efcn58ww
ADP
lenovolegion_7_16iax7_firmware
𝑥
< k1cn40ww
ADP
lenovolegion_7-16ithg6_firmware
𝑥
< h1cn52ww
ADP
lenovos14_g2_itl_firmware
𝑥
< ggcn51ww
ADP
lenovos14_g3_iap_firmware
𝑥
< jkcn34ww
ADP
lenovoslim_7_14iap7_firmware
𝑥
< jhcn28ww
ADP
lenovoslim_7_carbon_13iap7_firmware
𝑥
< k2cn34ww
ADP
lenovoslim_7_prox_14iah7_firmware
𝑥
< hmcn41ww
ADP
lenovothinkbook_15p_imh_firmware
𝑥
< f6cn26ww
ADP
lenovov14_g2_ijl_firmware
𝑥
< htcn31ww
ADP
lenovov14_g3_iap_firmware
𝑥
< jkcn34ww
ADP
lenovov15_g2_ijl_firmware
𝑥
< htcn31ww
ADP
lenovov15_g3_iap_firmware
𝑥
< jkcn34ww
ADP
lenovov17_g3_iap_firmware
𝑥
< jkcn34ww
ADP
lenovos540-13itl_firmware
𝑥
< fzcn26ww
ADP
lenovoslim_7_pro-14ihu5_firmware
𝑥
< fjcn74ww
ADP
lenovoslim_9-14itl05_firmware
𝑥
< escn56ww
ADP
lenovothinkbook_15p_g2_ith_firmware
𝑥
< hjcn32ww
ADP
lenovov14_g1-iml_firmware
𝑥
< dxcn44ww
ADP
lenovov14_g2-itl_firmware
𝑥
< ggcn51ww
ADP
lenovov14-igl_firmware
𝑥
< dvcn28ww
ADP
lenovov15_g1-iml_firmware
𝑥
< dxcn44ww
ADP
lenovov15_g2-itl_firmware
𝑥
< ggcn51ww
ADP
lenovov15-igl_firmware
𝑥
< dvcn28ww
ADP
lenovov17_g2-itl_firmware
𝑥
< ggcn51ww
ADP
lenovov17-iil_firmware
𝑥
< emcn56ww
ADP
lenovoyoga_7_14ial7_firmware
𝑥
< j1cn35ww
ADP
lenovoyoga_7_16iah7_firmware
𝑥
< j1cn35ww
ADP
lenovoyoga_7_16iap7_firmware
𝑥
< j1cn35ww
ADP
lenovoyoga_7-14itl5_firmware
𝑥
< f5cn59ww
ADP
lenovoyoga_7-15itl5_firmware
𝑥
< f5cn59ww
ADP
lenovoyoga_9_14iap7_firmware
𝑥
< hncn42ww
ADP
lenovoyoga_slim_7_carbon_13iap7_firmware
𝑥
< k2cn34ww
ADP
lenovoyoga_slim_7_pro_14iah7_firmware
𝑥
< krcn14ww
ADP
lenovoideapad_3-15itl6_firmware
𝑥
< ggcn51ww
ADP
lenovoyoga_slim_7_pro_14iap7_firmware
𝑥
< jhcn28ww
ADP
lenovoyoga_slim_7_pro-14ihu5_firmware
𝑥
< fjcn74ww
ADP
lenovoyoga_slim_7_pro-14ihu5_o_firmware
𝑥
< fjcn74ww
ADP
lenovoyoga_slim_7_pro-14itl5_firmware
𝑥
< fjcn74ww
ADP
lenovoyoga_slim_7_prox_14iah7_firmware
𝑥
< hmcn41ww
ADP
lenovoyoga_slim_9_14iap7_firmware
𝑥
< j3cn49ww
ADP
lenovoyoga_slim_9-14itl05_firmware
𝑥
< escn56ww
ADP
lenovoideapad_3-14igl05_firmware
𝑥
< dvcn28ww
ADP
lenovoideapad_3-14iil05_firmware
𝑥
< emcn56ww
ADP
lenovoideapad_3-14iml05_firmware
𝑥
< dxcn44ww
ADP
lenovoideapad_3-14itl05_firmware
𝑥
< gccn32ww
ADP
lenovoideapad_3-14itl6_firmware
𝑥
< ggcn51ww
ADP
lenovoideapad_3-15iil05_firmware
𝑥
< emcn56ww
ADP
lenovoideapad_3-15iml05_firmware
𝑥
< dxcn44ww
ADP
lenovoideapad_3-15itl05_firmware
𝑥
< gccn32ww
ADP
lenovoideapad_3-17iml05_firmware
𝑥
< dxcn44ww
ADP
lenovoideapad_5-15iil05_firmware
𝑥
< dpcn58ww
ADP
lenovoideapad_creator_5-15imh05_firmware
𝑥
< egcn40ww
ADP
lenovoideapad_gaming_3-15imh05_firmware
𝑥
< egcn40ww
ADP
Common Weakness Enumeration
References
https://support.lenovo.com/us/en/product_security/LEN-103710
https://support.lenovo.com/us/en/product_security/LEN-103710