CVE-2020-8323 | Severity.io

Description

A potential vulnerability in the SMI callback function used in the Legacy SD driver in some Lenovo ThinkPad, ThinkStation, and Lenovo Notebook models may allow arbitrary code execution.

Related CPE's

330-14ast_firmware

Vulnerable

330-15ast_firmware

Vulnerable

330-17ast_firmware

Vulnerable

340c-15api_firmware

Vulnerable

340c-15ast_firmware

Vulnerable

720s_touch-15ikb_firmware

Vulnerable

720s_touch-15ikb

720s-15ikb_firmware

Vulnerable

730s-13iwl_firmware

Vulnerable

c640-iml_firmware

Vulnerable

e42-80_firmware

Vulnerable

e52-80_firmware

Vulnerable

k22-80_firmware

Vulnerable

v720-12_firmware

Vulnerable

k32-80_kbl_firmware

Vulnerable

k32-80_skl_firmware

Vulnerable

miix_720-12ikb_firmware

Vulnerable

s145-14api_firmware

Vulnerable

s145-14ast_firmware

Vulnerable

s145-15api_firmware

Vulnerable

s145-15ast_firmware

Vulnerable

s540-13api_firmware

Vulnerable

s750-iil_firmware

Vulnerable

s940-14iwl_firmware

Vulnerable

thinkbook_13s-iwl_firmware

Vulnerable

thinkbook_13s-iwl

thinkbook_14s-iwl_firmware

Vulnerable

thinkbook_14s-iwl

v110-14ast_firmware

Vulnerable

v110-14ikb_firmware

Vulnerable

v110-15ast_firmware

Vulnerable

v130-15igm_firmware

Vulnerable

v130-15ikb_firmware

Vulnerable

v310-15igm_firmware

Vulnerable

v330-15igm_firmware

Vulnerable

v330-15ikb_firmware

Vulnerable

v330-15isk_firmware

Vulnerable

v340-iil_firmware

Vulnerable

v340-iml_firmware

Vulnerable

v540s-13_firmware

Vulnerable

Vulnerable

v730-13ikb_firmware

Vulnerable

v730-13isk_firmware

Vulnerable

v730-15ikb_firmware

Vulnerable

wei5-15ikb_firmware

Vulnerable

xiaoxin_14-ast_qc_2019_firmware

Vulnerable

xiaoxin_14-ast_qc_2019

xx-14api_qc_2019_firmware

Vulnerable

xx-14api_qc_2019

yoga_s730-13iwl_firmware

Vulnerable

yoga_s730-13iwl

yoga_s940-14iwl_firmware

Vulnerable

yoga_s940-14iwl

6_pro-13-iwl_firmware

Vulnerable

6_pro-14-iwl_firmware

Vulnerable

e53-80_firmware

Vulnerable

Vulnerable

k4-iwl_firmware

Vulnerable

thinkpad_11e_yoga_gen_6_firmware

Vulnerable

thinkpad_11e_yoga_gen_6

thinkpad_11e_firmware

Vulnerable

thinkpad_yoga_11e_3rd_gen_firmware

Vulnerable

thinkpad_yoga_11e_3rd_gen

thinkpad_yoga_11e_4th_gen_firmware

Vulnerable

thinkpad_yoga_11e_4th_gen

thinkpad_yoga_11e_5th_gen_firmware

Vulnerable

thinkpad_yoga_11e_5th_gen

thinkpad_13_2nd_gen_firmware

Vulnerable

thinkpad_13_2nd_gen

thinkpad_13_firmware

Vulnerable

thinkpad_a275_firmware

Vulnerable

thinkpad_a285_firmware

Vulnerable

thinkpad_a475_firmware

Vulnerable

thinkpad_a485_firmware

Vulnerable

thinkpad_e14_firmware

Vulnerable

thinkpad_e15_firmware

Vulnerable

thinkpad_r14_firmware

Vulnerable

thinkpad_s3_gen_2_firmware

Vulnerable

thinkpad_s3_gen_2

thinkpad_e455_firmware

Vulnerable

thinkpad_e555_firmware

Vulnerable

thinkpad_e460_firmware

Vulnerable

thinkpad_e560_firmware

Vulnerable

thinkpad_e465_firmware

Vulnerable

thinkpad_e565_firmware

Vulnerable

thinkpad_e470_firmware

Vulnerable

thinkpad_e570_firmware

Vulnerable

thinkpad_e475_firmware

Vulnerable

thinkpad_e575_firmware

Vulnerable

thinkpad_e480_firmware

Vulnerable

thinkpad_e580_firmware

Vulnerable

thinkpad_e485_firmware

Vulnerable

thinkpad_e585_firmware

Vulnerable

thinkpad_e490s_firmware

Vulnerable

thinkpad_s3_firmware

Vulnerable

thinkpad_e490_firmware

Vulnerable

thinkpad_e590_firmware

Vulnerable

thinkpad_r490_firmware

Vulnerable

thinkpad_r590_firmware

Vulnerable

thinkpad_l13_firmware

Vulnerable

thinkpad_l1415_firmware

Vulnerable

thinkpad_l380_firmware

Vulnerable

thinkpad_s3_3rd_gen_firmware

Vulnerable

thinkpad_s3_3rd_gen

thinkpad_l380_yoga_firmware

Vulnerable

thinkpad_l380_yoga

thinkpad_s2_yoga_3rd_gen_firmware

Vulnerable

thinkpad_s2_yoga_3rd_gen

thinkpad_l390_yoga_firmware

Vulnerable

thinkpad_l390_yoga

thinkpad_s2_yoga_4th_gen_firmware

Vulnerable

thinkpad_s2_yoga_4th_gen

thinkpad_l460_firmware

Vulnerable

thinkpad_l470_firmware

Vulnerable

thinkpad_l480_firmware

Vulnerable

thinkpad_l580_firmware

Vulnerable

thinkpad_l490_firmware

Vulnerable

thinkpad_l590_firmware

Vulnerable

thinkpad_l560_firmware

Vulnerable

thinkpad_l570_firmware

Vulnerable

thinkpad_p1_firmware

Vulnerable

thinkpad_p43s_firmware

Vulnerable

thinkpad_p50_firmware

Vulnerable

thinkpad_p50s_firmware

Vulnerable

thinkpad_p51_firmware

Vulnerable

thinkpad_p51s_firmware

Vulnerable

thinkpad_p52_firmware

Vulnerable

thinkpad_p52s_firmware

Vulnerable

thinkpad_p53_firmware

Vulnerable

thinkpad_p53s_firmware

Vulnerable

thinkpad_p70_firmware

Vulnerable

thinkpad_p71_firmware

Vulnerable

thinkpad_p72_firmware

Vulnerable

thinkpad_p73_firmware

Vulnerable

thinkpad_s5_2nd_gen_firmware

Vulnerable

thinkpad_s5_2nd_gen

thinkpad_s5_firmware

Vulnerable

thinkpad_e560p_firmware

Vulnerable

thinkpad_t25_firmware

Vulnerable

thinkpad_t460_firmware

Vulnerable

thinkpad_t460p_firmware

Vulnerable

thinkpad_t460s_firmware

Vulnerable

thinkpad_t470_firmware

Vulnerable

thinkpad_t470p_firmware

Vulnerable

thinkpad_t470s_firmware

Vulnerable

thinkpad_t480_firmware

Vulnerable

thinkpad_t480s_firmware

Vulnerable

thinkpad_t490_firmware

Vulnerable

thinkpad_t490s_firmware

Vulnerable

thinkpad_t560_firmware

Vulnerable

thinkpad_t570_firmware

Vulnerable

thinkpad_t580_firmware

Vulnerable

thinkpad_t590_firmware

Vulnerable

thinkpad_x1_carbon_firmware

Vulnerable

thinkpad_x1_carbon

o

lenovo

thinkpad_x1_yoga_firmware

2

h

lenovo

thinkpad_x1_yoga

2

thinkpad_x1_extreme_firmware

Vulnerable

thinkpad_x1_extreme

thinkpad_x1_tablet_firmware

Vulnerable

thinkpad_x1_tablet

thinkpad_x260_firmware

Vulnerable

thinkpad_x270_firmware

Vulnerable

thinkpad_x280_firmware

Vulnerable

thinkpad_x380_yoga_firmware

Vulnerable

thinkpad_x380_yoga

thinkpad_x390_firmware

Vulnerable

thinkpad_x390_yoga_firmware

Vulnerable

thinkpad_x390_yoga

thinkpad_x395_firmware

Vulnerable

thinkpad_yoga_260_firmware

Vulnerable

thinkpad_yoga_260

thinkpad_s1_firmware

Vulnerable

thinkpad_yoga_370_firmware

Vulnerable

thinkpad_yoga_370

thinkpad_s1_3rd_firmware

Vulnerable

thinkpad_s1_3rd

thinkpad_t495_firmware

Vulnerable

thinkpad_t495s_firmware

Vulnerable

thinkpad_helix_firmware

Vulnerable

thinkpad_s1_yoga_firmware

Vulnerable

thinkpad_s1_yoga

thinkpad_s1_yoga_vpro_firmware

Vulnerable

thinkpad_s1_yoga_vpro

thinkpad_s5_yoga_15_firmware

Vulnerable

thinkpad_s5_yoga_15

thinkpad_s540_firmware

Vulnerable

thinkpad_t440_firmware

Vulnerable

thinkpad_t440s_firmware

Vulnerable

thinkpad_t440p_firmware

Vulnerable

thinkpad_t540_firmware

Vulnerable

thinkpad_t540p_firmware

Vulnerable

thinkpad_t550_firmware

Vulnerable

thinkpad_w540_firmware

Vulnerable

thinkpad_w541_firmware

Vulnerable

thinkpad_w550s_firmware

Vulnerable

thinkpad_x1_carbon_\(20ax\)_firmware

Vulnerable

thinkpad_x1_carbon_\(20ax\)

thinkpad_x1_carbon_\(20bx\)_firmware

Vulnerable

thinkpad_x1_carbon_\(20bx\)

thinkpad_x140e_firmware

Vulnerable

thinkpad_x240_firmware

Vulnerable

thinkpad_x240s_firmware

Vulnerable

thinkpad_x250_firmware

Vulnerable

thinkpad_yoga_11e_\(20dx\)_firmware

Vulnerable

thinkpad_yoga_11e_\(20dx\)

References

https://support.lenovo.com/us/en/product_security/LEN-30042

Vendor Advisory

Weaknesses

[email protected]

Primary

NVD-CWE-noinfo

CVSS impact metrics

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

6.7 · Medium

CVSS V3.1
CVSS V3.0
CVSS V2.0

Information

Source identifier

[email protected]

Vulnerability status

Analyzed

Published

2020-06-09T20:15:22.427

4 years ago

Last modified

2020-06-22T13:11:05.170

4 years ago