6.7

CVE-2020-8322

A potential vulnerability in the SMI callback function used in the Legacy USB driver in some Lenovo Notebook and ThinkStation models may allow arbitrary code execution.

Data is provided by the National Vulnerability Database (NVD)
Lenovo330-14ast Firmware Version-
   Lenovo330-14ast Version-
Lenovo330-15ast Firmware Version-
   Lenovo330-15ast Version-
Lenovo330-17ast Firmware Version-
   Lenovo330-17ast Version-
Lenovo340c-15api Firmware Version-
   Lenovo340c-15api Version-
Lenovo340c-15ast Firmware Version-
   Lenovo340c-15ast Version-
Lenovo720s Touch-15ikb Firmware Version-
   Lenovo720s Touch-15ikb Version-
Lenovo720s-15ikb Firmware Version-
   Lenovo720s-15ikb Version-
Lenovo730s-13iwl Firmware Version-
   Lenovo730s-13iwl Version-
LenovoC640-iml Firmware Version-
   LenovoC640-iml Version-
LenovoE42-80 Firmware Version-
   LenovoE42-80 Version-
LenovoE52-80 Firmware Version-
   LenovoE52-80 Version-
LenovoK22-80 Firmware Version-
   LenovoK22-80 Version-
LenovoV720-12 Firmware Version-
   LenovoV720-12 Version-
LenovoK32-80 Kbl Firmware Version-
   LenovoK32-80 Kbl Version-
LenovoK32-80 Skl Firmware Version-
   LenovoK32-80 Skl Version-
LenovoMiix 720-12ikb Firmware Version-
   LenovoMiix 720-12ikb Version-
LenovoS145-14api Firmware Version-
   LenovoS145-14api Version-
LenovoS145-14ast Firmware Version-
   LenovoS145-14ast Version-
LenovoS145-15api Firmware Version-
   LenovoS145-15api Version-
LenovoS145-15ast Firmware Version-
   LenovoS145-15ast Version-
LenovoS540-13api Firmware Version-
   LenovoS540-13api Version-
LenovoS750-iil Firmware Version-
   LenovoS750-iil Version-
LenovoS940-14iwl Firmware Version-
   LenovoS940-14iwl Version-
LenovoThinkbook 13s-iwl Firmware Version-
   LenovoThinkbook 13s-iwl Version-
LenovoThinkbook 14s-iwl Firmware Version-
   LenovoThinkbook 14s-iwl Version-
LenovoV110-14ast Firmware Version-
   LenovoV110-14ast Version-
LenovoV110-14ikb Firmware Version-
   LenovoV110-14ikb Version-
LenovoV110-15ast Firmware Version-
   LenovoV110-15ast Version-
LenovoV130-15igm Firmware Version-
   LenovoV130-15igm Version-
LenovoV130-15ikb Firmware Version-
   LenovoV130-15ikb Version-
LenovoV310-15igm Firmware Version-
   LenovoV310-15igm Version-
LenovoV330-15igm Firmware Version-
   LenovoV330-15igm Version-
LenovoV330-15ikb Firmware Version-
   LenovoV330-15ikb Version-
LenovoV330-15isk Firmware Version-
   LenovoV330-15isk Version-
LenovoV340-iil Firmware Version-
   LenovoV340-iil Version-
LenovoV340-iml Firmware Version-
   LenovoV340-iml Version-
LenovoV540s-13 Firmware Version-
   LenovoV540s-13 Version-
Lenovo14iwl Firmware Version-
   Lenovo14iwl Version-
LenovoV730-13ikb Firmware Version-
   LenovoV730-13ikb Version-
LenovoV730-13isk Firmware Version-
   LenovoV730-13isk Version-
LenovoV730-15ikb Firmware Version-
   LenovoV730-15ikb Version-
LenovoWei5-15ikb Firmware Version-
   LenovoWei5-15ikb Version-
LenovoXx-14api Qc 2019 Firmware Version-
   LenovoXx-14api Qc 2019 Version-
LenovoYoga S730-13iwl Firmware Version-
   LenovoYoga S730-13iwl Version-
LenovoYoga S940-14iwl Firmware Version-
   LenovoYoga S940-14iwl Version-
Lenovo6 Pro-13-iwl Firmware Version-
   Lenovo6 Pro-13-iwl Version-
Lenovo6 Pro-14-iwl Firmware Version-
   Lenovo6 Pro-14-iwl Version-
LenovoE53-80 Firmware Version-
   LenovoE53-80 Version-
LenovoK3 Firmware Version-
   LenovoK3 Version-
LenovoK4-iwl Firmware Version-
   LenovoK4-iwl Version-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 0.05% 0.125
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 6.7 0.8 5.9
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov 4.6 3.9 6.4
AV:L/AC:L/Au:N/C:P/I:P/A:P
psirt@lenovo.com 6.4 0.5 5.9
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H