Shodan
Vulnerabilities
Vulnerable Software
Lenovo:  >> System Interface Foundation  >> 1.0.66.0  Security Vulnerabilities
CVE-2021-3969
A Time of Check Time of Use (TOCTOU) vulnerability was reported in IMController, a software component of Lenovo System Interface Foundation, prior to version 1.1.20.3that could allow a local attacker to elevate privileges.
CVSS Score
7.8
EPSS Score
0.004
Published
2022-05-18
CVE-2021-3922
A race condition vulnerability was reported in IMController, a software component of Lenovo System Interface Foundation, prior to version 1.1.20.3 that could allow a local attacker to connect and interact with the IMController child process' named pipe.
CVSS Score
7.8
EPSS Score
0.004
Published
2022-05-18
CVE-2020-8346
A denial of service vulnerability was reported in the Lenovo Vantage component called Lenovo System Interface Foundation prior to version 1.1.19.5 that could allow configuration files to be written to non-standard locations.
CVSS Score
5.5
EPSS Score
0.0
Published
2020-09-15
CVE-2020-8324
A vulnerability was reported in LenovoAppScenarioPluginSystem for Lenovo System Interface Foundation prior to version 1.2.184.31 that could allow unsigned DLL files to be executed.
CVSS Score
5.0
EPSS Score
0.001
Published
2020-04-14
CVE-2020-8318
A privilege escalation vulnerability was reported in the LenovoSystemUpdatePlugin for Lenovo System Interface Foundation prior to version that could allow an authenticated user to execute code with elevated privileges.
CVSS Score
7.3
EPSS Score
0.001
Published
2020-04-14
CVE-2020-8319
A privilege escalation vulnerability was reported in Lenovo System Interface Foundation prior to version 1.1.19.3 that could allow an authenticated user to execute code with elevated privileges.
CVSS Score
7.3
EPSS Score
0.001
Published
2020-04-14
CVE-2019-6186
A potential vulnerability was reported in Lenovo System Interface Foundation versions before v1.1.18.3 that could allow an authenticated user to execute code as another user.
CVSS Score
8.8
EPSS Score
0.006
Published
2019-11-20
CVE-2019-6189
A potential vulnerability was reported in Lenovo System Interface Foundation versions before v1.1.18.3 that could allow an administrative user to load an unsigned DLL.
CVSS Score
7.8
EPSS Score
0.001
Published
2019-11-20
CVE-2016-8223
During an internal security review, Lenovo identified a local privilege escalation vulnerability in Lenovo System Interface Foundation software installed on some Windows 10 PCs where a user with local privileges could run arbitrary code with administrator level privileges.
CVSS Score
7.8
EPSS Score
0.0
Published
2016-11-29


Products
Pricing
Contact Us

Shodan ® - All rights reserved