PT-2020-20121 · Lenovo · Variableservicesmm
Published
2020-11-11
·
Updated
2020-11-30
·
CVE-2020-8354
CVSS v2.0
7.2
High
| Vector | AV:L/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Lenovo Notebook (affected versions not specified)
Description
A potential issue in the SMI callback function used in the VariableServiceSmm driver may allow arbitrary code execution.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Time Of Check To Time Of Use
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Variableservicesmm