9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
**Lenovo Security Advisory:**LEN-41856
**Potential Impact:**Privilege escalation
**Severity:**High
**Scope of Impact:**Industry-wide
**CVE Identifier:**CVE-2020-8758
Summary Description:
Intel reported potential security vulnerabilities in Intel Active Management Technology (AMT) and Intel Standard Manageability (ISM) that may allow escalation of privilege.
Mitigation Strategy for Customers (what you should do to protect yourself):
Intel recommends updating Intel AMT and Intel ISM to the version (or later) indicated for your model in the Product Impact section below.
Product Impact:
To download the version specified for your product below, follow these steps:
Navigate to the Drivers & Software support site for your product:
Lenovo also offers tools to assist with update management as an alternative to the manual steps described above. Refer to the following for additional help:
PC Products and Software: <https://support.lenovo.com/us/en/solutions/ht504759>
Server and Enterprise Software: <https://support.lenovo.com/us/en/solutions/lnvo-lxcaupd> and <https://datacentersupport.lenovo.com/us/en/documents/lnvo-center>
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P