Attacker Value
Unknown
0
CVE-2016-8222
0
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:
Add References:
Attacker Value
Unknown
(0 users assessed)
Exploitability
Unknown
(0 users assessed)User Interaction
Unknown
Privileges Required
Unknown
Attack Vector
Unknown
0
MITRE ATT&CK
Log in to add MITRE ATT&CK tag
Add MITRE ATT&CK tactics and techniques that apply to this CVE.
MITRE ATT&CK
Select the MITRE ATT&CK Tactics that apply to this CVE
Collection
Select any Techniques used:
Command and Control
Select any Techniques used:
Credential Access
Select any Techniques used:
Defense Evasion
Select any Techniques used:
Discovery
Select any Techniques used:
Execution
Select any Techniques used:
Exfiltration
Select any Techniques used:
Impact
Select any Techniques used:
Initial Access
Select any Techniques used:
Lateral Movement
Select any Techniques used:
Persistence
Select any Techniques used:
Privilege Escalation
Select any Techniques used:
Topic Tags
Select the tags that apply to this CVE (Assessment added tags are disabled and cannot be removed)
What makes this of high-value to an attacker?
What makes this of low-value to an attacker?
Description
A vulnerability has been identified in a signed kernel driver for the BIOS of some ThinkPad systems that can allow an attacker with Windows administrator-level privileges to call System Management Mode (SMM) services. This could lead to a denial of service attack or allow certain BIOS variables or settings to be altered (such as boot sequence). The setting or changing of BIOS passwords is not affected by this vulnerability.
Add Assessment
No one has assessed this topic. Be the first to add your voice to the community.
CVSS V3 Severity and Metrics
Data provided by the National Vulnerability Database (NVD)
Base Score:
None
Impact Score:
Unknown
Exploitability Score:
Unknown
Attack Vector (AV):
Unknown
Attack Complexity (AC):
Unknown
Privileges Required (PR):
Unknown
User Interaction (UI):
Unknown
Scope (S):
Unknown
Confidentiality (C):
Unknown
Integrity (I):
Unknown
Availability (A):
Unknown
General Information
Offensive Application
Unknown
Utility Class
Unknown
Ports
Unknown
OS
Unknown
Vulnerable Versions
ThinkPad systems various
Prerequisites
Unknown
Discovered By
Unknown
PoC Author
Unknown
Metasploit Module
Unknown
Reporter
Unknown
Vendors
Products
- thinkpad 10 ella 2 bios -,
- thinkpad 11e beema bios -,
- thinkpad 11e braswell bios -,
- thinkpad 11e broadwell bios -,
- thinkpad 11e skylake bios -,
- thinkpad 13e bios -,
- thinkpad e450 bios -,
- thinkpad e450c bios -,
- thinkpad e455 bios -,
- thinkpad e460 bios -,
- thinkpad e465 bios -,
- thinkpad e550 bios -,
- thinkpad e550c bios -,
- thinkpad e555 bios -,
- thinkpad e560 bios -,
- thinkpad e565 bios -,
- thinkpad edge e440 bios -,
- thinkpad edge e445 bios -,
- thinkpad edge e540 bios -,
- thinkpad edge e545 bios -,
- thinkpad helix 20cg bios -,
- thinkpad helix 20ch bios -,
- thinkpad l440 bios -,
- thinkpad l450 bios -,
- thinkpad l460 bios -,
- thinkpad l540 bios -,
- thinkpad l560 bios -,
- thinkpad p50 bios -,
- thinkpad p50s bios -,
- thinkpad p70 bios -,
- thinkpad s1 yoga 12 bios -,
- thinkpad s1 yoga non vpro bios -,
- thinkpad s1 yoga vpro bios -,
- thinkpad s3 s440 bios -,
- thinkpad s3 yoga 14 bios -,
- thinkpad s5 e560p bios -,
- thinkpad s5 yoga 15 bios -,
- thinkpad s540 bios -,
- thinkpad t440 bios -,
- thinkpad t440p bios -,
- thinkpad t440s bios -,
- thinkpad t440u bios -,
- thinkpad t450 bios -,
- thinkpad t450s bios -,
- thinkpad t460 bios -,
- thinkpad t460p bios -,
- thinkpad t460s bios -,
- thinkpad t540 bios -,
- thinkpad t540p bios -,
- thinkpad t550 bios -,
- thinkpad t560 bios -,
- thinkpad tablet 10 bios -,
- thinkpad tablet 8 bios -,
- thinkpad w540 bios -,
- thinkpad w541 bios -,
- thinkpad w550s bios -,
- thinkpad x1 carbon 20ax bios -,
- thinkpad x1 carbon 20bx bios -,
- thinkpad x1 carbon bios -,
- thinkpad x1 tablet bios -,
- thinkpad x1 yoga bios -,
- thinkpad x140e amd bios -,
- thinkpad x240 bios -,
- thinkpad x240s bios -,
- thinkpad x250 broadwell bios -,
- thinkpad x250 sharkbay bios -,
- thinkpad x260 bios -,
- thinkpad yoga 11e beema bios -,
- thinkpad yoga 11e bios -,
- thinkpad yoga 11e braswell bios -,
- thinkpad yoga 11e broadwell bios -,
- thinkpad yoga 11e skylake bios -,
- thinkpad yoga 14 460 s3 bios -,
- thinkpad yoga 260 s1 bios -
References
Additional Info
Authenticated
Unknown
Exploitable
Unknown
Reliability
Unknown
Stability
Unknown
Available Mitigations
Unknown
Shelf Life
Unknown
Userbase/Installbase
Unknown
Patch Effectiveness
Unknown
Rapid7
Technical Analysis
Report as Emergent Threat Response
Report as Zero-day Exploit
Report as Exploited in the Wild
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:
