Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2020-8352
HistoryNov 11, 2020 - 6:15 p.m.

CVE-2020-8352

2020-11-1118:15:11
CWE-358
[email protected]
web.nvd.nist.gov
22
lenovo
desktop
bios
cve-2020-8352
sata
configuration
detection
issue

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:L/Au:N/C:N/I:P/A:N

2.4 Low

CVSS3

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

4.1 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

25.2%

JSON

In some Lenovo Desktop models, the Configuration Change Detection BIOS setting failed to detect SATA configuration changes.

Affected configurations

NVD
Node
lenovothinkcentre_e73Match-
AND
lenovothinkcentre_e73_firmwareMatch-
Node
lenovothinkcentre_m73Match-
AND
lenovothinkcentre_m73_firmwareMatch-
Node
lenovoqitian_4500Match-
AND
lenovoqitian_4500_firmwareMatch-
Node
lenovoqitian_b4550Match-
AND
lenovoqitian_b4550_firmwareMatch-
Node
lenovoqitian_m4550Match-
AND
lenovoqitian_m4550_firmwareMatch-
Node
lenovothinkcentre_m4500kMatch-
AND
lenovothinkcentre_m4500k_firmwareMatch-
Node
lenovothinkcentre_m4500tMatch-
AND
lenovothinkcentre_m4500t_firmwareMatch-
Node
lenovothinkcentre_m4500sMatch-
AND
lenovothinkcentre_m4500s_firmwareMatch-
Node
lenovoyangtian_afh81_firmwareMatch-
AND
lenovoyangtian_afh81Match-
Node
lenovoyangtian_mc_h81_firmwareMatch-
AND
lenovoyangtian_mc_h81Match-
Node
lenovoyangtian_mf_firmwareMatch-
AND
lenovoyangtian_mfMatch-
Node
lenovoyangtian_wf_h81_pci_firmwareMatch-
AND
lenovoyangtian_wf_h81_pciMatch-
Node
lenovoyangtian_ms_firmwareMatch-
AND
lenovoyangtian_msMatch-
Node
lenovoyangtian_ws_h81_firmwareMatch-
AND
lenovoyangtian_ws_h81Match-
Node
lenovoyangtian_tc_firmwareMatch-
AND
lenovoyangtian_tcMatch-
Node
lenovoyangtian_wcc_h81_pci_firmwareMatch-
AND
lenovoyangtian_wcc_h81_pciMatch-

CNA Affected

[
  {
    "product": "BIOS",
    "vendor": "Lenovo",
    "versions": [
      {
        "lessThan": "various",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

Related

prion 1
nvd 1
cvelist 1
prion
prion
Design/Logic Flaw
2020-11-11 18:15:00
nvd
nvd
CVE-2020-8352
2020-11-11 18:15:11
cvelist
cvelist
CVE-2020-8352
2020-11-11 17:35:18

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:L/Au:N/C:N/I:P/A:N

2.4 Low

CVSS3

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

4.1 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

25.2%

JSON
Related for CVE-2020-8352
prion1nvd1cvelist1