Strix
26.1K

CVE-2019-6156

UnknownEPSS 0.24%

Last modified

CVE-2019-6156 is a vulnerability of currently unknown severity. In Lenovo systems, SMM BIOS Write Protection is used to prevent writes to SPI Flash. While this provides sufficient protection, an additional layer of protection is provided by SPI Protected Range Registers (PRx). EPSS estimates a 0.24% chance of exploitation in the next 30 days.

Description

In Lenovo systems, SMM BIOS Write Protection is used to prevent writes to SPI Flash. While this provides sufficient protection, an additional layer of protection is provided by SPI Protected Range Registers (PRx). Lenovo was notified that after resuming from S3 sleep mode in various versions of BIOS for Lenovo systems, the PRx is not set. This does not impact the SMM BIOS Write Protection, which keeps systems protected.

Metrics

EPSS Probability
0.24%

14.9th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
Lenovo510-15ikl FirmwareAll versions
Lenovo510s-08ikl FirmwareAll versions
LenovoIdeacentre 300-20ish FirmwareAll versions
LenovoIdeacentre 300s-11ish FirmwareAll versions
LenovoIdeacentre 510-15icb Firmware< o3qkt32a
LenovoIdeacentre 510a-15icb Firmware< o3qkt32a
LenovoIdeacentre 510s-08ish FirmwareAll versions
LenovoIdeacentre 620s-03ikl FirmwareAll versions
LenovoIdeacentre 700 Firmware< fwkt9aa
LenovoIdeacentre 720-18icb Firmware< o3qkt32a
LenovoLegion C530-19icb Firmware< o3lkt20a
LenovoLegion C730-19ico Firmware< o3nkt20a
LenovoLegion T530-28icb Firmware< o3lkt20a
LenovoLegion T730-28ico Firmware< o3nkt20a
LenovoLegion Y520t Z370 FirmwareAll versions
LenovoLegion Y720 Tower FirmwareAll versions
LenovoLegion Y920 Tower FirmwareAll versions
LenovoLenovo 63 FirmwareAll versions
LenovoH50-30g Desktop FirmwareAll versions
LenovoM4500 FirmwareAll versions
LenovoM4500 Id FirmwareAll versions
LenovoM4550 Id FirmwareAll versions
Lenovo530s-07icb FirmwareAll versions
LenovoQitian 4500 FirmwareAll versions
LenovoQitian B4550 FirmwareAll versions
LenovoQitian B4650 FirmwareAll versions
LenovoQitian M4550 FirmwareAll versions
LenovoQitian M4600 FirmwareAll versions
LenovoQitian M4650 FirmwareAll versions
LenovoQt M410 FirmwareAll versions
LenovoQt B415 FirmwareAll versions
LenovoQt M415 FirmwareAll versions
LenovoThinkcentre E73 \(Sff\) FirmwareAll versions
LenovoThinkcentre E73 \(Twr\) FirmwareAll versions
LenovoThinkcentre E73s FirmwareAll versions
LenovoThinkcentre E74 FirmwareAll versions
LenovoThinkcentre E74s FirmwareAll versions
LenovoThinkcentre E75t FirmwareAll versions
LenovoThinkcentre E75s FirmwareAll versions
LenovoThinkcentre E93 \(Sff\) Firmware< fbktd5a
LenovoThinkcentre E93 \(Twr\) Firmware< fbktd5a
LenovoThinkcentre M4500k FirmwareAll versions
LenovoThinkcentre M4500q FirmwareAll versions
LenovoThinkcentre M4500t FirmwareAll versions
LenovoThinkcentre M4500s FirmwareAll versions
LenovoThinkcentre M4600t FirmwareAll versions
LenovoThinkcentre M4600s FirmwareAll versions
LenovoThinkcentre M610 Firmware< m1akt3fa
LenovoThinkcentre M6500t Firmware< fbktd5a
LenovoThinkcentre M6500s Firmware< fbktd5a

Showing 50 of 178 affected configurations. See NVD for the full list.

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2019-6156?
In Lenovo systems, SMM BIOS Write Protection is used to prevent writes to SPI Flash. While this provides sufficient protection, an additional layer of protection is provided by SPI Protected Range Registers (PRx). Lenovo was notified that after resuming from S3 sleep mode in various versions of BIOS for Lenovo systems, the PRx is not set. This does not impact the SMM BIOS Write Protection, which keeps systems protected.
How severe is CVE-2019-6156?
Severity scoring for CVE-2019-6156 is pending analysis. The EPSS model estimates a 0.24% probability of exploitation in the next 30 days.
How do I fix CVE-2019-6156?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2019-6156?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST