Sign-up

ID

VAR-202011-1475


CVE

CVE-2020-8352


TITLE

plural  Lenovo Desktop  Vulnerability in the model

Trust: 0.8

sources: JVNDB: JVNDB-2020-013467

DESCRIPTION

In some Lenovo Desktop models, the Configuration Change Detection BIOS setting failed to detect SATA configuration changes. plural Lenovo Desktop There are unspecified vulnerabilities in the model.Information may be tampered with

Trust: 1.62

sources: NVD: CVE-2020-8352 // JVNDB: JVNDB-2020-013467

AFFECTED PRODUCTS

vendor:lenovomodel:yangtian wcc h81 pciscope:eqversion: -

Trust: 1.0

vendor:lenovomodel:yangtian mfscope:eqversion: -

Trust: 1.0

vendor:lenovomodel:qitian b4550scope:eqversion: -

Trust: 1.0

vendor:lenovomodel:qitian 4500scope:eqversion: -

Trust: 1.0

vendor:lenovomodel:thinkcentre m4500kscope:eqversion: -

Trust: 1.0

vendor:lenovomodel:yangtian ws h81scope:eqversion: -

Trust: 1.0

vendor:lenovomodel:thinkcentre e73scope:eqversion: -

Trust: 1.0

vendor:lenovomodel:thinkcentre m4500sscope:eqversion: -

Trust: 1.0

vendor:lenovomodel:thinkcentre m73scope:eqversion: -

Trust: 1.0

vendor:lenovomodel:yangtian afh81scope:eqversion: -

Trust: 1.0

vendor:lenovomodel:qitian m4550scope:eqversion: -

Trust: 1.0

vendor:lenovomodel:yangtian mc h81scope:eqversion: -

Trust: 1.0

vendor:lenovomodel:yangtian msscope:eqversion: -

Trust: 1.0

vendor:lenovomodel:yangtian wf h81 pciscope:eqversion: -

Trust: 1.0

vendor:lenovomodel:yangtian tcscope:eqversion: -

Trust: 1.0

vendor:lenovomodel:thinkcentre m4500tscope:eqversion: -

Trust: 1.0

vendor:lenovomodel:thinkcentre m4500sscope: - version: -

Trust: 0.8

vendor:lenovomodel:qitian b4550scope: - version: -

Trust: 0.8

vendor:lenovomodel:yangtian afh81scope: - version: -

Trust: 0.8

vendor:lenovomodel:thinkcentre m4500tscope: - version: -

Trust: 0.8

vendor:lenovomodel:qitian 4500scope: - version: -

Trust: 0.8

vendor:lenovomodel:thinkcentre m73scope: - version: -

Trust: 0.8

vendor:lenovomodel:thinkcentre e73scope: - version: -

Trust: 0.8

vendor:lenovomodel:qitian m4550scope: - version: -

Trust: 0.8

vendor:lenovomodel:yangtian mc h81scope: - version: -

Trust: 0.8

vendor:lenovomodel:thinkcentre m4500kscope: - version: -

Trust: 0.8

sources: JVNDB: JVNDB-2020-013467 // NVD: CVE-2020-8352

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2020-8352
value: LOW

Trust: 1.0

psirt@lenovo.com: CVE-2020-8352
value: LOW

Trust: 1.0

NVD: CVE-2020-8352
value: LOW

Trust: 0.8

CNNVD: CNNVD-201911-1705
value: LOW

Trust: 0.6

nvd@nist.gov: CVE-2020-8352
severity: LOW
baseScore: 2.1
vectorString: AV:L/AC:L/AU:N/C:N/I:P/A:N
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 3.9
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

nvd@nist.gov: CVE-2020-8352
baseSeverity: LOW
baseScore: 2.4
vectorString: CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
attackVector: PHYSICAL
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: NONE
integrityImpact: LOW
availabilityImpact: NONE
exploitabilityScore: 0.9
impactScore: 1.4
version: 3.1

Trust: 2.0

OTHER: JVNDB-2020-013467
baseSeverity: LOW
baseScore: 2.4
vectorString: CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
attackVector: PHYSICAL
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: NONE
integrityImpact: LOW
availabilityImpact: NONE
exploitabilityScore: NONE
impactScore: NONE
version: 3.0

Trust: 0.8

sources: JVNDB: JVNDB-2020-013467 // CNNVD: CNNVD-201911-1705 // NVD: CVE-2020-8352 // NVD: CVE-2020-8352

PROBLEMTYPE DATA

problemtype:NVD-CWE-noinfo

Trust: 1.0

problemtype:CWE-358

Trust: 1.0

problemtype:Lack of information (CWE-noinfo) [NVD Evaluation ]

Trust: 0.8

sources: JVNDB: JVNDB-2020-013467 // NVD: CVE-2020-8352

TYPE

security feature problem

Trust: 0.6

sources: CNNVD: CNNVD-201911-1705

PATCH

title:LEN-49266url:https://support.lenovo.com/us/en/product_security/LEN-49266

Trust: 0.8

title:Lenovo Desktop Fixing measures for security feature vulnerabilitiesurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=133694

Trust: 0.6

sources: JVNDB: JVNDB-2020-013467 // CNNVD: CNNVD-201911-1705

EXTERNAL IDS

db:NVDid:CVE-2020-8352

Trust: 2.4

db:LENOVOid:LEN-49266

Trust: 1.6

db:JVNDBid:JVNDB-2020-013467

Trust: 0.8

db:CNNVDid:CNNVD-201911-1705

Trust: 0.6

sources: JVNDB: JVNDB-2020-013467 // CNNVD: CNNVD-201911-1705 // NVD: CVE-2020-8352

REFERENCES

url:https://support.lenovo.com/us/en/product_security/len-49266

Trust: 2.2

url:https://nvd.nist.gov/vuln/detail/cve-2020-8352

Trust: 1.4

sources: JVNDB: JVNDB-2020-013467 // CNNVD: CNNVD-201911-1705 // NVD: CVE-2020-8352

SOURCES

db:JVNDBid:JVNDB-2020-013467
db:CNNVDid:CNNVD-201911-1705
db:NVDid:CVE-2020-8352

LAST UPDATE DATE

2024-08-14T12:07:56.951000+00:00


SOURCES UPDATE DATE

db:JVNDBid:JVNDB-2020-013467date:2021-07-06T09:13:00
db:CNNVDid:CNNVD-201911-1705date:2021-05-11T00:00:00
db:NVDid:CVE-2020-8352date:2020-11-25T19:28:36.453

SOURCES RELEASE DATE

db:JVNDBid:JVNDB-2020-013467date:2021-07-06T00:00:00
db:CNNVDid:CNNVD-201911-1705date:2019-11-10T00:00:00
db:NVDid:CVE-2020-8352date:2020-11-11T18:15:11.420