cvedb.io
CVE-2019-6156
LOW · CVSS 3.3
EPSS exploitation probability: 0%
Published 2019-04-10T17:29:00.463 · Last modified 2026-06-17T02:38:41.540

Summary

In Lenovo systems, SMM BIOS Write Protection is used to prevent writes to SPI Flash. While this provides sufficient protection, an additional layer of protection is provided by SPI Protected Range Registers (PRx). Lenovo was notified that after resuming from S3 sleep mode in various versions of BIOS for Lenovo systems, the PRx is not set. This does not impact the SMM BIOS Write Protection, which keeps systems protected.

Affected products

lenovo — 510-15ikl_firmware

Does this affect you?

Add your gear to cvedb and we'll alert you only when lenovo ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.