Fault symptom:
Lenovo security announcement:LEN-4292
Potential impact:Unnecessary data input may occur.
Severity
:Low
Abstract:
Unauthorized attackers may use the Lenovo 500 wireless keyboard or mouse receiver for keyboard input.
Description:
One vulnerability was discovered: attackers in the vicinity of the system's physical environment can use specialized devices to enter users' systems (such as keys) using the installed Lenovo 500 wireless keyboard or mouse receiver ).
Due to this vulnerability, the input of valid users via the Lenovo 500 wireless keyboard is still encrypted, while the text key entered via the Lenovo 500 wireless keyboard cannot be wirelessly read.
Solution:
Measures should be taken for self-protection:
Lenovo has released updated firmware to alleviate this problem on the brand new Lenovo 500 wireless keyboard and mouse. This firmware can be installed only during manufacturing. The firmware version can be tracked through the product version number, which is located on the sticker at the bottom of the device.
Affected keyboard version: the version number is not printed in the lower right corner of the sticker.
Fixed keyboard Version: "Version 1.1" is printed in the bottom right corner of the sticker
Affected mouse version: the version number is not printed in the lower right corner of the sticker.
Repaired mouse Version: "Version 1.1" is printed in the bottom right corner of the sticker
If you want to replace your existing Lenovo 500 wireless keyboard or mouse with a new firmware keyboard or mouse, contact the Lenovo Support Center. The support center has noticed this problem, and accept replacement at any time. Lenovo is very grateful to the affected customers for their patience. The company will do its best to process all requests seriously and efficiently.
