CVEInsight.

Free vulnerability intelligence for developers, security teams, and researchers. Data sourced from public databases for informational purposes only.

Explore

Legal

CVE data sourced from NVD / NIST & public disclosures.

lenovo

thinkpad_a285_firmware

4 known vulnerabilities · sorted by CVSS score

CVE-2020-8320

MEDIUM6.4

An internal shell was included in BIOS image in some ThinkPad models that could allow escalation of privilege.

lenovo / thinkpad_11e_yoga_gen_6_firmware+100

Physical

Published Jun 9, 2020

CVE-2020-8323

MEDIUM6.4

A potential vulnerability in the SMI callback function used in the Legacy SD driver in some Lenovo ThinkPad, ThinkStation, and Lenovo Notebook models may allow arbitrary code execution.

lenovo / 330-14ast_firmware+172

Local

Published Jun 9, 2020

CVE-2020-8334

MEDIUM6.1

The BIOS tamper detection mechanism was not triggered in Lenovo ThinkPad T495s, X395, T495, A485, A285, A475, A275 which may allow for unauthorized access.

lenovo / thinkpad_t495s_firmware+6

Physical

Published Jun 9, 2020

CVE-2020-8335

MEDIUM6.1

The BIOS tamper detection mechanism was not triggered in Lenovo ThinkPad A285, BIOS versions up to r0xuj70w; A485, BIOS versions up to r0wuj65w; T495 BIOS versions up to r12uj55w; T495s/X395, BIOS versions up to r13uj47w, while the emergency-reset button is pressed which may allow for unauthorized access.

lenovo / thinkpad_a275_firmware+7

Physical

Published Sep 1, 2020