CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-8318

A privilege escalation vulnerability was reported in the LenovoSystemUpdatePlugin for Lenovo System Interface Foundation prior to version that could allow an authenticated user to execute code with elevated privileges.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 32.1%

CVSS Severity

CVSS v3 Score 7.3

CVSS v2 Score 7.2

References

Products affected by CVE-2020-8318

Lenovo » System Interface Foundation » Version: N/A

cpe:2.3:a:lenovo:system_interface_foundation:-
Lenovo » System Interface Foundation » Version: 1.0.66.0

cpe:2.3:a:lenovo:system_interface_foundation:1.0.66.0
Lenovo » System Interface Foundation » Version: 1.1.18.3

cpe:2.3:a:lenovo:system_interface_foundation:1.1.18.3
Lenovo » System Interface Foundation » Version: 1.1.19.3

cpe:2.3:a:lenovo:system_interface_foundation:1.1.19.3
Lenovo » System Interface Foundation » Version: 1.1.19.5

cpe:2.3:a:lenovo:system_interface_foundation:1.1.19.5
Lenovo » System Interface Foundation » Version: 1.1.20.3

cpe:2.3:a:lenovo:system_interface_foundation:1.1.20.3
Lenovo » System Interface Foundation » Version: 1.2.184.31

cpe:2.3:a:lenovo:system_interface_foundation:1.2.184.31

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-8318

Products

Pricing

Contact Us