An internal shell was included in BIOS image in some ThinkPad models that could allow escalation of privilege.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| Lenovo | BIOS | affected |
|
Configuration 1 [-]
| AND |
|
Configuration 2 [-]
| AND |
|
Configuration 3 [-]
| AND |
|
Configuration 4 [-]
| AND |
|
Configuration 5 [-]
| AND |
|
Configuration 6 [-]
| AND |
|
Configuration 7 [-]
| AND |
|
Configuration 8 [-]
| AND |
|
Configuration 9 [-]
| AND |
|
Configuration 10 [-]
| AND |
|
Configuration 11 [-]
| AND |
|
Configuration 12 [-]
| AND |
|
Configuration 13 [-]
| AND |
|
Configuration 14 [-]
| AND |
|
Configuration 15 [-]
| AND |
|
Configuration 16 [-]
| AND |
|
Configuration 17 [-]
| AND |
|
Configuration 18 [-]
| AND |
|
Configuration 19 [-]
| AND |
|
Configuration 20 [-]
| AND |
|
Configuration 21 [-]
| AND |
|
Configuration 22 [-]
| AND |
|
Configuration 23 [-]
| AND |
|
Configuration 24 [-]
| AND |
|
Configuration 25 [-]
| AND |
|
Configuration 26 [-]
| AND |
|
Configuration 27 [-]
| AND |
|
Configuration 28 [-]
| AND |
|
Configuration 29 [-]
| AND |
|
Configuration 30 [-]
| AND |
|
Configuration 31 [-]
| AND |
|
Configuration 32 [-]
| AND |
|
Configuration 33 [-]
| AND |
|
Configuration 34 [-]
| AND |
|
Configuration 35 [-]
| AND |
|
Configuration 36 [-]
| AND |
|
Configuration 37 [-]
| AND |
|
Configuration 38 [-]
| AND |
|
Configuration 39 [-]
| AND |
|
Configuration 40 [-]
| AND |
|
Configuration 41 [-]
| AND |
|
Configuration 42 [-]
| AND |
|
Configuration 43 [-]
| AND |
|
Configuration 44 [-]
| AND |
|
Configuration 45 [-]
| AND |
|
Configuration 46 [-]
| AND |
|
Configuration 47 [-]
| AND |
|
Configuration 48 [-]
| AND |
|
Configuration 49 [-]
| AND |
|
Configuration 50 [-]
| AND |
|
Configuration 51 [-]
| AND |
|
Configuration 52 [-]
| AND |
|
Configuration 53 [-]
| AND |
|
Configuration 54 [-]
| AND |
|
Configuration 55 [-]
| AND |
|
Configuration 56 [-]
| AND |
|
Configuration 57 [-]
| AND |
|
Configuration 58 [-]
| AND |
|
Configuration 59 [-]
| AND |
|
Configuration 60 [-]
| AND |
|
Configuration 61 [-]
| AND |
|
Configuration 62 [-]
| AND |
|
Configuration 63 [-]
| AND |
|
Configuration 64 [-]
| AND |
|
Configuration 65 [-]
| AND |
|
Configuration 66 [-]
| AND |
|
Configuration 67 [-]
| AND |
|
Configuration 68 [-]
| AND |
|
Configuration 69 [-]
| AND |
|
Configuration 70 [-]
| AND |
|
Configuration 71 [-]
| AND |
|
Configuration 72 [-]
| AND |
|
Configuration 73 [-]
| AND |
|
Configuration 74 [-]
| AND |
|
Configuration 75 [-]
| AND |
|
Configuration 76 [-]
| AND |
|
Configuration 77 [-]
| AND |
|
Configuration 78 [-]
| AND |
|
Configuration 79 [-]
| AND |
|
Configuration 80 [-]
| AND |
|
Configuration 81 [-]
| AND |
|
Configuration 82 [-]
| AND |
|
Configuration 83 [-]
| AND |
|
Configuration 84 [-]
| AND |
|
Configuration 85 [-]
| AND |
|
Configuration 86 [-]
| AND |
|
Configuration 87 [-]
| AND |
|
Configuration 88 [-]
| AND |
|
Configuration 89 [-]
| AND |
|
Configuration 90 [-]
| AND |
|
Configuration 91 [-]
| AND |
|
Configuration 92 [-]
| AND |
|
Configuration 93 [-]
| AND |
|
Configuration 94 [-]
| AND |
|
Configuration 95 [-]
| AND |
|
Configuration 96 [-]
| AND |
|
Configuration 97 [-]
| AND |
|
Configuration 98 [-]
| AND |
|
Configuration 99 [-]
| AND |
|
Configuration 100 [-]
| AND |
|
Configuration 101 [-]
| AND |
|
No data.
No data.
Project Subscriptions
| Vendors | Products |
|---|---|
|
Lenovo
Subscribe
|
Thinkpad 11e
Subscribe
Thinkpad 11e Firmware
Subscribe
Thinkpad 11e Yoga Gen 6
Subscribe
Thinkpad 11e Yoga Gen 6 Firmware
Subscribe
Thinkpad 13
Subscribe
Thinkpad 13 2nd Gen
Subscribe
Thinkpad 13 2nd Gen Firmware
Subscribe
Thinkpad 13 Firmware
Subscribe
Thinkpad A275
Subscribe
Thinkpad A275 Firmware
Subscribe
Thinkpad A285
Subscribe
Thinkpad A285 Firmware
Subscribe
Thinkpad A475
Subscribe
Thinkpad A475 Firmware
Subscribe
Thinkpad A485
Subscribe
Thinkpad A485 Firmware
Subscribe
Thinkpad E14
Subscribe
Thinkpad E14 Firmware
Subscribe
Thinkpad E15
Subscribe
Thinkpad E15 Firmware
Subscribe
Thinkpad E455
Subscribe
Thinkpad E455 Firmware
Subscribe
Thinkpad E460
Subscribe
Thinkpad E460 Firmware
Subscribe
Thinkpad E465
Subscribe
Thinkpad E465 Firmware
Subscribe
Thinkpad E470
Subscribe
Thinkpad E470 Firmware
Subscribe
Thinkpad E475
Subscribe
Thinkpad E475 Firmware
Subscribe
Thinkpad E480
Subscribe
Thinkpad E480 Firmware
Subscribe
Thinkpad E485
Subscribe
Thinkpad E485 Firmware
Subscribe
Thinkpad E490
Subscribe
Thinkpad E490 Firmware
Subscribe
Thinkpad E490s
Subscribe
Thinkpad E490s Firmware
Subscribe
Thinkpad E555
Subscribe
Thinkpad E555 Firmware
Subscribe
Thinkpad E560
Subscribe
Thinkpad E560 Firmware
Subscribe
Thinkpad E560p
Subscribe
Thinkpad E560p Firmware
Subscribe
Thinkpad E565
Subscribe
Thinkpad E565 Firmware
Subscribe
Thinkpad E570
Subscribe
Thinkpad E570 Firmware
Subscribe
Thinkpad E575
Subscribe
Thinkpad E575 Firmware
Subscribe
Thinkpad E580
Subscribe
Thinkpad E580 Firmware
Subscribe
Thinkpad E585
Subscribe
Thinkpad E585 Firmware
Subscribe
Thinkpad E590
Subscribe
Thinkpad E590 Firmware
Subscribe
Thinkpad L13
Subscribe
Thinkpad L13 Firmware
Subscribe
Thinkpad L1415
Subscribe
Thinkpad L1415 Firmware
Subscribe
Thinkpad L380
Subscribe
Thinkpad L380 Firmware
Subscribe
Thinkpad L380 Yoga
Subscribe
Thinkpad L380 Yoga Firmware
Subscribe
Thinkpad L390 Yoga
Subscribe
Thinkpad L390 Yoga Firmware
Subscribe
Thinkpad L460
Subscribe
Thinkpad L460 Firmware
Subscribe
Thinkpad L470
Subscribe
Thinkpad L470 Firmware
Subscribe
Thinkpad L480
Subscribe
Thinkpad L480 Firmware
Subscribe
Thinkpad L490
Subscribe
Thinkpad L490 Firmware
Subscribe
Thinkpad L560
Subscribe
Thinkpad L560 Firmware
Subscribe
Thinkpad L570
Subscribe
Thinkpad L570 Firmware
Subscribe
Thinkpad L580
Subscribe
Thinkpad L580 Firmware
Subscribe
Thinkpad L590
Subscribe
Thinkpad L590 Firmware
Subscribe
Thinkpad P1
Subscribe
Thinkpad P1 Firmware
Subscribe
Thinkpad P43s
Subscribe
Thinkpad P43s Firmware
Subscribe
Thinkpad P50
Subscribe
Thinkpad P50 Firmware
Subscribe
Thinkpad P50s
Subscribe
Thinkpad P50s Firmware
Subscribe
Thinkpad P51
Subscribe
Thinkpad P51 Firmware
Subscribe
Thinkpad P51s
Subscribe
Thinkpad P51s Firmware
Subscribe
Thinkpad P52
Subscribe
Thinkpad P52 Firmware
Subscribe
Thinkpad P52s
Subscribe
Thinkpad P52s Firmware
Subscribe
Thinkpad P53
Subscribe
Thinkpad P53 Firmware
Subscribe
Thinkpad P53s
Subscribe
Thinkpad P53s Firmware
Subscribe
Thinkpad P70
Subscribe
Thinkpad P70 Firmware
Subscribe
Thinkpad P71
Subscribe
Thinkpad P71 Firmware
Subscribe
Thinkpad P72
Subscribe
Thinkpad P72 Firmware
Subscribe
Thinkpad P73
Subscribe
Thinkpad P73 Firmware
Subscribe
Thinkpad R14
Subscribe
Thinkpad R14 Firmware
Subscribe
Thinkpad R490
Subscribe
Thinkpad R490 Firmware
Subscribe
Thinkpad R590
Subscribe
Thinkpad R590 Firmware
Subscribe
Thinkpad S1
Subscribe
Thinkpad S1 3rd
Subscribe
Thinkpad S1 3rd Firmware
Subscribe
Thinkpad S1 Firmware
Subscribe
Thinkpad S2 Yoga 3rd Gen
Subscribe
Thinkpad S2 Yoga 3rd Gen Firmware
Subscribe
Thinkpad S2 Yoga 4th Gen
Subscribe
Thinkpad S2 Yoga 4th Gen Firmware
Subscribe
Thinkpad S3
Subscribe
Thinkpad S3 3rd Gen
Subscribe
Thinkpad S3 3rd Gen Firmware
Subscribe
Thinkpad S3 Firmware
Subscribe
Thinkpad S3 Gen 2
Subscribe
Thinkpad S3 Gen 2 Firmware
Subscribe
Thinkpad S5
Subscribe
Thinkpad S5 2nd Gen
Subscribe
Thinkpad S5 2nd Gen Firmware
Subscribe
Thinkpad S5 Firmware
Subscribe
Thinkpad T25
Subscribe
Thinkpad T25 Firmware
Subscribe
Thinkpad T460
Subscribe
Thinkpad T460 Firmware
Subscribe
Thinkpad T460p
Subscribe
Thinkpad T460p Firmware
Subscribe
Thinkpad T460s
Subscribe
Thinkpad T460s Firmware
Subscribe
Thinkpad T470
Subscribe
Thinkpad T470 Firmware
Subscribe
Thinkpad T470p
Subscribe
Thinkpad T470p Firmware
Subscribe
Thinkpad T470s
Subscribe
Thinkpad T470s Firmware
Subscribe
Thinkpad T480
Subscribe
Thinkpad T480 Firmware
Subscribe
Thinkpad T480s
Subscribe
Thinkpad T480s Firmware
Subscribe
Thinkpad T490
Subscribe
Thinkpad T490 Firmware
Subscribe
Thinkpad T490s
Subscribe
Thinkpad T490s Firmware
Subscribe
Thinkpad T495
Subscribe
Thinkpad T495 Firmware
Subscribe
Thinkpad T495s
Subscribe
Thinkpad T495s Firmware
Subscribe
Thinkpad T560
Subscribe
Thinkpad T560 Firmware
Subscribe
Thinkpad T570
Subscribe
Thinkpad T570 Firmware
Subscribe
Thinkpad T580
Subscribe
Thinkpad T580 Firmware
Subscribe
Thinkpad T590
Subscribe
Thinkpad T590 Firmware
Subscribe
Thinkpad X1 Carbon
Subscribe
Thinkpad X1 Carbon Firmware
Subscribe
Thinkpad X1 Extreme
Subscribe
Thinkpad X1 Extreme Firmware
Subscribe
Thinkpad X1 Tablet
Subscribe
Thinkpad X1 Tablet Firmware
Subscribe
Thinkpad X1 Yoga
Subscribe
Thinkpad X1 Yoga Firmware
Subscribe
Thinkpad X260
Subscribe
Thinkpad X260 Firmware
Subscribe
Thinkpad X270
Subscribe
Thinkpad X270 Firmware
Subscribe
Thinkpad X280
Subscribe
Thinkpad X280 Firmware
Subscribe
Thinkpad X380 Yoga
Subscribe
Thinkpad X380 Yoga Firmware
Subscribe
Thinkpad X390
Subscribe
Thinkpad X390 Firmware
Subscribe
Thinkpad X390 Yoga
Subscribe
Thinkpad X390 Yoga Firmware
Subscribe
Thinkpad X395
Subscribe
Thinkpad X395 Firmware
Subscribe
Thinkpad Yoga 11e 3rd Gen
Subscribe
Thinkpad Yoga 11e 3rd Gen Firmware
Subscribe
Thinkpad Yoga 11e 4th Gen
Subscribe
Thinkpad Yoga 11e 4th Gen Firmware
Subscribe
Thinkpad Yoga 11e 5th Gen
Subscribe
Thinkpad Yoga 11e 5th Gen Firmware
Subscribe
Thinkpad Yoga 260
Subscribe
Thinkpad Yoga 260 Firmware
Subscribe
Thinkpad Yoga 370
Subscribe
Thinkpad Yoga 370 Firmware
Subscribe
|
Advisories
| Source | ID | Title |
|---|---|---|
 EUVD |
EUVD-2020-29187 | An internal shell was included in BIOS image in some ThinkPad models that could allow escalation of privilege. |
Fixes
Solution
Update system firmware to the version (or newer) indicated for your model in the Product Impact section of LEN-30042.
Workaround
No workaround given by the vendor.
References
| Link | Providers |
|---|---|
| https://support.lenovo.com/us/en/product_security/LEN-30042 |
|
History
No history.
Projects
Sign in to view the affected projects.
MITRE
Status: PUBLISHED
Assigner: lenovo
Published:
Updated: 2024-09-16T17:33:07.639Z
Reserved: 2020-01-28T00:00:00
Link: CVE-2020-8320
Vulnrichment
No data.
NVD
Status : Modified
Published: 2020-06-09T20:15:22.117
Modified: 2024-11-21T05:38:42.023
Link: CVE-2020-8320
Redhat
No data.
OpenCVE Enrichment
No data.