Details of VAR-201611-0150

ID

VAR-201611-0150

CVE

CVE-2016-8224

TITLE

Lenovo Notebook and ThinkServer Service disruption in the system (DoS) Vulnerabilities

Trust: 0.8

sources: JVNDB: JVNDB-2016-006116

DESCRIPTION

A vulnerability has been identified in some Lenovo Notebook and ThinkServer systems where an attacker with administrative privileges on a system could install a program that circumvents Intel Management Engine (ME) protections. This could result in a denial of service or privilege escalation attack on the system. LenovoNotebook and ThinkServer are products of China Lenovo. The former is the notebook series, the latter is the server series. A local elevation of privilege vulnerability exists in the LenovoNotebook and ThinkServer systems. A local attacker can leverage this issue to gain elevated privileges. There are security vulnerabilities in Lenovo Notebook and ThinkServer systems

Trust: 2.52

sources: NVD: CVE-2016-8224 // JVNDB: JVNDB-2016-006116 // CNVD: CNVD-2016-11754 // BID: 94595 // VULHUB: VHN-97044

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2016-11754

AFFECTED PRODUCTS

vendor:	lenovo	model:	notebook yoga 900 13isk bios	scope:	eq	version:	-	Trust: 1.6
vendor:	lenovo	model:	notebook yoga 710 11isk bios	scope:	eq	version:	-	Trust: 1.6
vendor:	lenovo	model:	notebook yoga 710 11ikb bios	scope:	eq	version:	-	Trust: 1.6
vendor:	lenovo	model:	notebook miix 710 12ikb bios	scope:	eq	version:	-	Trust: 1.6
vendor:	lenovo	model:	notebook yoga 510 14isk bios	scope:	eq	version:	-	Trust: 1.6
vendor:	lenovo	model:	notebook yoga 510 15isk bios	scope:	eq	version:	-	Trust: 1.6
vendor:	lenovo	model:	notebook yoga 900s 12isk bios	scope:	eq	version:	-	Trust: 1.6
vendor:	lenovo	model:	bios	scope:	eq	version:	-	Trust: 1.6
vendor:	lenovo	model:	notebook xiaoxin air 12 bios	scope:	eq	version:	-	Trust: 1.6
vendor:	lenovo	model:	notebook k41 80 bios	scope:	eq	version:	-	Trust: 1.6
vendor:	lenovo	model:	notebook k21 80 bios	scope:	eq	version:	-	Trust: 1.0
vendor:	lenovo	model:	thinkserver ts150 bios	scope:	eq	version:	-	Trust: 1.0
vendor:	lenovo	model:	notebook g50 80 bios	scope:	eq	version:	-	Trust: 1.0
vendor:	lenovo	model:	notebook ideapad 300 17isk bios	scope:	eq	version:	-	Trust: 1.0
vendor:	lenovo	model:	notebook e40 80 bios	scope:	eq	version:	-	Trust: 1.0
vendor:	lenovo	model:	notebook e31 80 bios	scope:	eq	version:	-	Trust: 1.0
vendor:	lenovo	model:	notebook ideapad 300 14ibr bios	scope:	eq	version:	-	Trust: 1.0
vendor:	lenovo	model:	notebook ideapad 300 14isk bios	scope:	eq	version:	-	Trust: 1.0
vendor:	lenovo	model:	notebook ideapad 510s 12isk bios	scope:	eq	version:	-	Trust: 1.0
vendor:	lenovo	model:	notebook 110 15ibr bios	scope:	eq	version:	-	Trust: 1.0
vendor:	lenovo	model:	notebook ideapad 300 15isk bios	scope:	eq	version:	-	Trust: 1.0
vendor:	lenovo	model:	notebook ideapad 300 15ibr bios	scope:	eq	version:	-	Trust: 1.0
vendor:	lenovo	model:	thinkserver ts450 bios	scope:	eq	version:	-	Trust: 1.0
vendor:	lenovo	model:	notebook e41 80 bios	scope:	eq	version:	-	Trust: 1.0
vendor:	lenovo	model:	notebook e51 80 bios	scope:	eq	version:	-	Trust: 1.0
vendor:	lenovo	model:	notebook b70 80 bios	scope:	eq	version:	-	Trust: 1.0
vendor:	lenovo	model:	notebook 110 14ibr bios	scope:	eq	version:	-	Trust: 1.0
vendor:	lenovo	model:	notebook g40 80 bios	scope:	eq	version:	-	Trust: 1.0
vendor:	lenovo	model:	notebook g50 80 touch bios	scope:	eq	version:	-	Trust: 1.0
vendor:	lenovo	model:	thinkserver	scope:	eq	version:	0	Trust: 0.9
vendor:	lenovo	model:	notebook	scope:	eq	version:	0	Trust: 0.9
vendor:	lenovo	model:	110-14ibr	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	110-14ibr bios	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	110-15ibr	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	110-15ibr bios	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	b70-80	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	b70-80 bios	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	bios	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	e31-80	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	e31-80 bios	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	e40-80	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	e40-80 bios	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	e41-80	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	e41-80 bios	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	e51-80	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	e51-80 bios	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	g40-80	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	g40-80 bios	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	g50-80	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	g50-80 bios	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	g50-80 touch	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	g50-80 touch bios	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	ideapad 300-14ibr	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	ideapad 300-14ibr bios	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	ideapad 300-14isk	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	ideapad 300-14isk bios	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	ideapad 300-15ibr	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	ideapad 300-15ibr bios	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	ideapad 300-15isk	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	ideapad 300-15isk bios	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	ideapad 300-17isk	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	ideapad 300-17isk bios	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	ideapad 510s-12isk	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	ideapad 510s-12isk bios	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	k21-80	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	k21-80 bios	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	k41-80	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	k41-80 bios	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	miix 710-12ikb	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	miix 710-12ikb bios	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	thinkserver ts150	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	thinkserver ts150 bios	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	thinkserver ts450	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	thinkserver ts450 bios	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	xiaoxin air 12	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	xiaoxin air 12 bios	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	yoga 510-14isk	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	yoga 510-14isk bios	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	yoga 510-15isk	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	yoga 510-15isk bios	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	yoga 710-11ikb	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	yoga 710-11ikb bios	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	yoga 710-11isk	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	yoga 710-11isk bios	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	yoga 900-13isk	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	yoga 900-13isk bios	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	yoga 900s-12isk	scope:	-	version:	-	Trust: 0.8
vendor:	lenovo	model:	yoga 900s-12isk bios	scope:	-	version:	-	Trust: 0.8

sources: CNVD: CNVD-2016-11754 // BID: 94595 // JVNDB: JVNDB-2016-006116 // CNNVD: CNNVD-201611-644 // NVD: CVE-2016-8224

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2016-8224
value:	MEDIUM
Trust: 1.0
NVD:	CVE-2016-8224
value:	MEDIUM
Trust: 0.8
CNVD:	CNVD-2016-11754
value:	MEDIUM
Trust: 0.6
CNNVD:	CNNVD-201611-644
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-97044
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2016-8224
severity:	MEDIUM
baseScore:	4.6
vectorString:	AV:L/AC:L/AU:S/C:N/I:N/A:C
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	SINGLE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	COMPLETE
exploitabilityScore:	3.1
impactScore:	6.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
CNVD:	CNVD-2016-11754
severity:	MEDIUM
baseScore:	4.6
vectorString:	AV:L/AC:L/AU:N/C:P/I:P/A:P
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	3.9
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6
VULHUB:	VHN-97044
severity:	MEDIUM
baseScore:	4.6
vectorString:	AV:L/AC:L/AU:S/C:N/I:N/A:C
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	SINGLE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	COMPLETE
exploitabilityScore:	3.1
impactScore:	6.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

nvd@nist.gov:	CVE-2016-8224
baseSeverity:	MEDIUM
baseScore:	4.4
vectorString:	CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
attackVector:	LOCAL
attackComplexity:	LOW
privilegesRequired:	HIGH
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	HIGH
exploitabilityScore:	0.8
impactScore:	3.6
version:	3.0
Trust: 1.8

sources: CNVD: CNVD-2016-11754 // VULHUB: VHN-97044 // JVNDB: JVNDB-2016-006116 // CNNVD: CNNVD-201611-644 // NVD: CVE-2016-8224

PROBLEMTYPE DATA

problemtype:

CWE-310

Trust: 1.9

sources: VULHUB: VHN-97044 // JVNDB: JVNDB-2016-006116 // NVD: CVE-2016-8224

THREAT TYPE

local

Trust: 0.9

sources: BID: 94595 // CNNVD: CNNVD-201611-644

TYPE

encryption problem

Trust: 0.6

sources: CNNVD: CNNVD-201611-644

CONFIGURATIONS

sources: JVNDB: JVNDB-2016-006116

PATCH

title:	LEN-9903	url:	https://support.lenovo.com/us/en/solutions/len_9903	Trust: 0.8
title:	Patch for LenovoNotebook and ThinkServer Local Privilege Escalation Vulnerability	url:	https://www.cnvd.org.cn/patchInfo/show/84823	Trust: 0.6
title:	Lenovo Notebook and ThinkServer Security vulnerabilities	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=65922	Trust: 0.6

sources: CNVD: CNVD-2016-11754 // JVNDB: JVNDB-2016-006116 // CNNVD: CNNVD-201611-644

EXTERNAL IDS

db:	NVD	id:	CVE-2016-8224	Trust: 3.4
db:	BID	id:	94595	Trust: 2.0
db:	JVNDB	id:	JVNDB-2016-006116	Trust: 0.8
db:	CNNVD	id:	CNNVD-201611-644	Trust: 0.7
db:	CNVD	id:	CNVD-2016-11754	Trust: 0.6
db:	VULHUB	id:	VHN-97044	Trust: 0.1

sources: CNVD: CNVD-2016-11754 // VULHUB: VHN-97044 // BID: 94595 // JVNDB: JVNDB-2016-006116 // CNNVD: CNNVD-201611-644 // NVD: CVE-2016-8224

REFERENCES

url:	https://support.lenovo.com/us/en/solutions/len_9903	Trust: 2.0
url:	http://www.securityfocus.com/bid/94595	Trust: 1.1
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2016-8224	Trust: 0.8
url:	http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2016-8224	Trust: 0.8
url:	https://support.lenovo.com/us/zh/solutions/len_9903	Trust: 0.6
url:	http://www.lenovo.com/ca/en/	Trust: 0.3

sources: CNVD: CNVD-2016-11754 // VULHUB: VHN-97044 // BID: 94595 // JVNDB: JVNDB-2016-006116 // CNNVD: CNNVD-201611-644 // NVD: CVE-2016-8224

CREDITS

Alexander Ermolov from Digital Security ltd.

Trust: 0.3

sources: BID: 94595

SOURCES

db:	CNVD	id:	CNVD-2016-11754
db:	VULHUB	id:	VHN-97044
db:	BID	id:	94595
db:	JVNDB	id:	JVNDB-2016-006116
db:	CNNVD	id:	CNNVD-201611-644
db:	NVD	id:	CVE-2016-8224

LAST UPDATE DATE

2024-08-14T15:44:33.904000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2016-11754	date:	2016-12-02T00:00:00
db:	VULHUB	id:	VHN-97044	date:	2016-12-06T00:00:00
db:	BID	id:	94595	date:	2016-12-20T02:04:00
db:	JVNDB	id:	JVNDB-2016-006116	date:	2016-12-07T00:00:00
db:	CNNVD	id:	CNNVD-201611-644	date:	2016-11-30T00:00:00
db:	NVD	id:	CVE-2016-8224	date:	2016-12-06T19:15:27.513

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2016-11754	date:	2016-12-02T00:00:00
db:	VULHUB	id:	VHN-97044	date:	2016-11-29T00:00:00
db:	BID	id:	94595	date:	2016-11-30T00:00:00
db:	JVNDB	id:	JVNDB-2016-006116	date:	2016-12-07T00:00:00
db:	CNNVD	id:	CNNVD-201611-644	date:	2016-11-30T00:00:00
db:	NVD	id:	CVE-2016-8224	date:	2016-11-29T20:59:02.437