CVE-2020-8320 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	6.4 MEDIUM	PHYSICAL	HIGH	NONE	CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
lenovo	CNA	6.4 MEDIUM	PHYSICAL	HIGH	NONE	CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 14%

Vendor	Product	Version
lenovo	thinkpad_11e_yoga_gen_6_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_11e_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_yoga_11e_3rd_gen_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_yoga_11e_4th_gen_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_yoga_11e_5th_gen_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_13_2nd_gen_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_13_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_a275_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_a285_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_a475_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_a485_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_e14_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_e15_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_r14_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_s3_gen_2_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_e455_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_e555_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_e460_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_e560_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_e465_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_e565_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_e470_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_e570_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_e475_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_e575_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_e480_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_e580_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_e485_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_e585_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_e490s_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_s3_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_e490_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_e590_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_r490_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_r590_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_l13_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_l1415_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_l380_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_s3_3rd_gen_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_l380_yoga_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_s2_yoga_3rd_gen_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_l390_yoga_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_s2_yoga_4th_gen_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_l460_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_l470_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_l480_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_l580_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_l490_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_l590_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_l560_firmware	𝑥 < 2020-07-03
lenovo	thinkpad_l570_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_p50_firmware	𝑥 < 2020-07-17
lenovo	thinkpad_p50s_firmware	𝑥 < 2020-07-24
lenovo	thinkpad_p51_firmware	𝑥 < 2020-07-03
lenovo	thinkpad_p51s_firmware	𝑥 < 2020-07-03
lenovo	thinkpad_p52s_firmware	𝑥 < 2020-07-03
lenovo	thinkpad_p70_firmware	𝑥 < 2020-07-17
lenovo	thinkpad_p71_firmware	𝑥 ≤ 2020-07-17
lenovo	thinkpad_s5_2nd_gen_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_s5_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_e560p_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_t460_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_t460p_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_t460s_firmware	𝑥 < 2020-06-19
lenovo	thinkpad_t470p_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_t560_firmware	𝑥 < 2020-07-24
lenovo	thinkpad_t570_firmware	𝑥 < 2020-07-03
lenovo	thinkpad_t580_firmware	𝑥 < 2020-07-03
lenovo	thinkpad_x1_yoga_firmware	𝑥 < 2020-07-17
lenovo	thinkpad_x1_tablet_firmware	𝑥 < 2020-07-24
lenovo	thinkpad_x1_yoga_firmware	𝑥 < 2020-07-17
lenovo	thinkpad_x260_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_x270_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_x380_yoga_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_x390_firmware	𝑥 < 2020-07-07
lenovo	thinkpad_x390_yoga_firmware	𝑥 < 2020-06-24
lenovo	thinkpad_x395_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_yoga_260_firmware	𝑥 < 2020-07-07
lenovo	thinkpad_s1_firmware	𝑥 < 2020-07-07
lenovo	thinkpad_yoga_370_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_s1_3rd_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_t495_firmware	𝑥 < 2020-07-10
lenovo	thinkpad_t495s_firmware	𝑥 < 2020-07-10

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-489 - Active Debug Code
The application is deployed to unauthorized actors with debugging code still enabled or active, which can create unintended entry points or expose sensitive information.
CWE-269 - Improper Privilege Management
The software does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

References

https://support.lenovo.com/us/en/product_security/LEN-30042