CVE-2017-3740

Summary

In Lenovo Active Protection System before 1.82.0.14, an attacker with local privileges could send commands to the system's embedded controller, which could cause a denial of service attack on the system or the ability to alter hardware functionality.

Affected Software

VendorProductVersion RangeStatus
Lenovo Group Ltd.Active Protection SystemEarlier than 1.82.0.14affected

Weaknesses

  • Denial of Service

ADP Enrichment

CVE Program Container

Additional References

References