CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2020-8329
https://notcve.org/view.php?id=CVE-2020-8329
A denial of service vulnerability was reported in the firmware prior to version 1.01 used in Lenovo Printer LJ4010DN that could be triggered by a remote user sending a crafted packet to the device, causing an error to be displayed and preventing printer from functioning until the printer is rebooted. Se informó una vulnerabilidad de denegación de servicio en versiones de firmware anteriores a 1.01, utilizada en Lenovo Printer LJ4010DN, que podría ser activada por un usuario remoto enviando un paquete diseñado hacia el dispositivo, causando un error que es desplegado e impide que la impresora funcione hasta que la impresora sea reiniciada. • https://iknow.lenovo.com.cn/detail/dc_188830.html •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2020-8327
https://notcve.org/view.php?id=CVE-2020-8327
A privilege escalation vulnerability was reported in LenovoBatteryGaugePackage for Lenovo System Interface Foundation bundled in Lenovo Vantage prior to version 10.2003.10.0 that could allow an authenticated user to execute code with elevated privileges. Se reportó una vulnerabilidad de escalada de privilegios en LenovoBatteryGaugePackage para Lenovo System Interface Foundation incorporado en Lenovo Vantage versión 10.2003.10.0, que podría permitir a un usuario autenticado ejecutar código con privilegios elevados. • https://support.lenovo.com/us/en/product_security/LEN-30401 • CWE-269: Improper Privilege Management CWE-428: Unquoted Search Path or Element •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2020-8324
https://notcve.org/view.php?id=CVE-2020-8324
A vulnerability was reported in LenovoAppScenarioPluginSystem for Lenovo System Interface Foundation prior to version 1.2.184.31 that could allow unsigned DLL files to be executed. Se reportó una vulnerabilidad en LenovoAppScenarioPluginSystem para Lenovo System Interface Foundation versiones anteriores a 1.2.184.31, que podría permitir que archivos DLL sin firmar sean ejecutados. • https://support.lenovo.com/us/en/product_security/LEN-30401 • CWE-20: Improper Input Validation CWE-347: Improper Verification of Cryptographic Signature •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2020-8319
https://notcve.org/view.php?id=CVE-2020-8319
A privilege escalation vulnerability was reported in Lenovo System Interface Foundation prior to version 1.1.19.3 that could allow an authenticated user to execute code with elevated privileges. Se reportó una vulnerabilidad de escalada de privilegios en Lenovo System Interface Foundation versiones anteriores a 1.1.19.3, que podría permitir a un usuario autenticado ejecutar código con privilegios elevados. • https://support.lenovo.com/us/en/product_security/LEN-30401 •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2020-8318
https://notcve.org/view.php?id=CVE-2020-8318
A privilege escalation vulnerability was reported in the LenovoSystemUpdatePlugin for Lenovo System Interface Foundation prior to version that could allow an authenticated user to execute code with elevated privileges. Se reportó una vulnerabilidad de escalada de privilegios en LenovoSystemUpdatePlugin para Lenovo System Interface Foundation versiones anteriores, que podría permitir a un usuario autenticado ejecutar código con privilegios elevados. • https://support.lenovo.com/us/en/product_security/LEN-30401 •