Lucene search
K

5 matches found

OSV
OSV
added 2020/04/14 9:15 p.m.3 views

CVE-2020-8324

A vulnerability was reported in LenovoAppScenarioPluginSystem for Lenovo System Interface Foundation prior to version 1.2.184.31 that could allow unsigned DLL files to be executed...

5.5CVSS6.5AI score0.00351EPSS
Exploits0References1
CVE
CVE
added 2020/04/14 9:5 p.m.68 views

CVE-2020-8324

CVE-2020-8324 affects Lenovo System Interface Foundation’s LenovoAppScenarioPluginSystem. A plugin contract runs under SYSTEM with signed package manifests, but an unchecked package name path (used to locate plugin updates) and inadequate DLL signature checks allowed unprivileged users to manipul...

5.5CVSS6.2AI score0.00351EPSS
Exploits0References1Affected Software1
Lenovo
Lenovo
added 2020/04/13 10:56 p.m.23 views

Lenovo Vantage Vulnerabilities - Lenovo Support US

No description provided...

7.8CVSS5.7AI score0.00422EPSS
Exploits0
Lenovo
Lenovo
added 2020/04/13 10:56 p.m.99 views

Lenovo Vantage Vulnerabilities - Lenovo Support US

Lenovo Security Advisory: LEN-30401 Potential Impact: Escalation of Privilege, Improper Verification of Cryptographic Signature, Severity: High Scope of Impact: Lenovo-specific CVE Identifier: CVE-2020-8316, CVE-2020-8318, CVE-2020-8319, CVE-2020-8324, CVE-2020-8327 Summary Description: The...

7.2CVSS1.5AI score0.00422EPSS
Exploits0
Pen Test Partners Blog
Pen Test Partners Blog
added 2020/03/20 8:59 a.m.46 views

PrivEsc in Lenovo Vantage. Two minutes later

TL;DR The latest and greatest Lenovo Vantage software which ships with the most recent Lenovo devices is affected by a privilege escalation vulnerability. Whilst Vantage has been released since circa 2016, the software replaced Lenovo Solutions Centre LSC as the recommended platform management an...

7.2CVSS7.4AI score0.00412EPSS
Exploits0
Rows per page
Query Builder