MEDIUM🇵🇱 Wersja polska

CVE-2020-8320

CVSS 6.4v3.1pub. 2020-06-09upd. 2024-11-21

An internal shell was included in BIOS image in some ThinkPad models that could allow escalation of privilege.

CVSS Vector
CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Lenovo Thinkpad 11e

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Thinkpad 11e Firmware

    OS
    Lenovo
    < 2020-07-10
  • Lenovo Thinkpad 11e Yoga Gen 6

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Thinkpad 11e Yoga Gen 6 Firmware

    OS
    Lenovo
    < 2020-07-10
  • Lenovo Thinkpad 13

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Thinkpad 13 2nd Gen

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Thinkpad 13 2nd Gen Firmware

    OS
    Lenovo
    < 2020-07-10
  • Lenovo Thinkpad 13 Firmware

    OS
    Lenovo
    < 2020-07-10
  • Lenovo Thinkpad A275

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Thinkpad A275 Firmware

    OS
    Lenovo
    < 2020-07-10
  • Lenovo Thinkpad A285

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Thinkpad A285 Firmware

    OS
    Lenovo
    < 2020-07-10
  • Lenovo Thinkpad A475

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Thinkpad A475 Firmware

    OS
    Lenovo
    < 2020-07-10
  • Lenovo Thinkpad A485

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Thinkpad A485 Firmware

    OS
    Lenovo
    < 2020-07-10
  • Lenovo Thinkpad E14

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Thinkpad E14 Firmware

    OS
    Lenovo
    < 2020-07-10
  • Lenovo Thinkpad E15

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Thinkpad E15 Firmware

    OS
    Lenovo
    < 2020-07-10
  • Lenovo Thinkpad E455

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Thinkpad E455 Firmware

    OS
    Lenovo
    < 2020-07-10
  • Lenovo Thinkpad E460

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Thinkpad E460 Firmware

    OS
    Lenovo
    < 2020-07-10
  • Lenovo Thinkpad E465

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Thinkpad E465 Firmware

    OS
    Lenovo
    < 2020-07-10
  • Lenovo Thinkpad E470

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Thinkpad E470 Firmware

    OS
    Lenovo
    < 2020-07-10
  • Lenovo Thinkpad E475

    HW
    Lenovo
    wszystkie wersje
  • Lenovo Thinkpad E475 Firmware

    OS
    Lenovo
    < 2020-07-10
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2019-18619HIGH7.8ten sam produkt

Incorrect parameter validation in the synaTee component of Synaptics WBF drivers using an SGX enclave (all ver...

CVE-2017-3767HIGH7.8ten sam produkt

A local privilege escalation vulnerability was identified in the Realtek audio driver versions prior to 6.0.1....

CVE-2017-3756HIGH7.8ten sam produkt

A privilege escalation vulnerability was identified in Lenovo Active Protection System for ThinkPad systems ve...

CVE-2022-4575MEDIUM6.7ten sam produkt

A vulnerability due to improper write protection of UEFI variables was reported in the BIOS of some ThinkPad ...

CVE-2022-48189MEDIUM6.7ten sam produkt

An SMM driver input validation vulnerability in the BIOS of some ThinkPad models could allow an attacker with ...