First published: Mon Oct 09 2023(Updated: )
A vulnerability was reported in ThinkPad T14s Gen 3 and X13 Gen3 that could cause the BIOS tamper detection mechanism to not trigger under specific circumstances which could allow unauthorized access.
Credit: psirt@lenovo.com psirt@lenovo.com
Affected Software | Affected Version | How to fix |
---|---|---|
Lenovo Thinkpad T14s Gen 3 Firmware | <1.30 | |
Lenovo Thinkpad T14s Gen 3 | ||
Microsoft Windows | ||
Lenovo Thinkpad X13 Gen 3 Firmware | <1.30 | |
Lenovo Thinkpad X13 Gen 3 | ||
Lenovo Thinkpad T14s Gen 3 Firmware | <1.35 | |
Linux Linux kernel | ||
Lenovo Thinkpad X13 Gen 3 Firmware | <1.35 |
Update system firmware to the version 1.30 (R22ET60W) or newer.
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this issue is CVE-2022-48183.
The affected software includes Lenovo ThinkPad T14s Gen 3 Firmware up to version 1.30 and Lenovo ThinkPad X13 Gen 3 Firmware up to version 1.30.
The severity of CVE-2022-48183 is medium with a CVSS score of 6.1.
CVE-2022-48183 could cause the BIOS tamper detection mechanism to not trigger under specific circumstances, allowing unauthorized access.
To fix CVE-2022-48183, users should update their Lenovo ThinkPad T14s Gen 3 and X13 Gen3 firmware to version 1.35 or later.