Lenovo implemented Intel CSME Anti-rollback ARB protections on some ThinkPad models to prevent roll back of CSME Firmware in flash.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| Lenovo | BIOS | affected |
|
Configuration 1 [-]
| AND |
|
Configuration 2 [-]
| AND |
|
Configuration 3 [-]
| AND |
|
Configuration 4 [-]
| AND |
|
Configuration 5 [-]
| AND |
|
Configuration 6 [-]
| AND |
|
Configuration 7 [-]
| AND |
|
Configuration 8 [-]
| AND |
|
Configuration 9 [-]
| AND |
|
Configuration 10 [-]
| AND |
|
Configuration 11 [-]
| AND |
|
Configuration 12 [-]
| AND |
|
Configuration 13 [-]
| AND |
|
Configuration 14 [-]
| AND |
|
Configuration 15 [-]
| AND |
|
Configuration 16 [-]
| AND |
|
Configuration 17 [-]
| AND |
|
Configuration 18 [-]
| AND |
|
Configuration 19 [-]
| AND |
|
Configuration 20 [-]
| AND |
|
Configuration 21 [-]
| AND |
|
Configuration 22 [-]
| AND |
|
Configuration 23 [-]
| AND |
|
Configuration 24 [-]
| AND |
|
Configuration 25 [-]
| AND |
|
Configuration 26 [-]
| AND |
|
Configuration 27 [-]
| AND |
|
Configuration 28 [-]
| AND |
|
Configuration 29 [-]
| AND |
|
Configuration 30 [-]
| AND |
|
Configuration 31 [-]
| AND |
|
Configuration 32 [-]
| AND |
|
Configuration 33 [-]
| AND |
|
Configuration 34 [-]
| AND |
|
Configuration 35 [-]
| AND |
|
Configuration 36 [-]
| AND |
|
Configuration 37 [-]
| AND |
|
Configuration 38 [-]
| AND |
|
No data.
No data.
Project Subscriptions
| Vendors | Products |
|---|---|
|
Lenovo
Subscribe
|
Thinkpad E14
Subscribe
Thinkpad E14 Firmware
Subscribe
Thinkpad E15
Subscribe
Thinkpad E15 Firmware
Subscribe
Thinkpad E490
Subscribe
Thinkpad E490 Firmware
Subscribe
Thinkpad E490s
Subscribe
Thinkpad E490s Firmware
Subscribe
Thinkpad E590
Subscribe
Thinkpad E590 Firmware
Subscribe
Thinkpad L13 1st Gen
Subscribe
Thinkpad L13 1st Gen Firmware
Subscribe
Thinkpad L1415 Gen 1
Subscribe
Thinkpad L1415 Gen 1 Firmware
Subscribe
Thinkpad L390 Yoga
Subscribe
Thinkpad L390 Yoga Firmware
Subscribe
Thinkpad L490
Subscribe
Thinkpad L490 Firmware
Subscribe
Thinkpad L590
Subscribe
Thinkpad L590 Firmware
Subscribe
Thinkpad P1 \(20mx\)
Subscribe
Thinkpad P1 \(20mx\) Firmware
Subscribe
Thinkpad P1 \(20qx\)
Subscribe
Thinkpad P1 \(20qx\) Firmware
Subscribe
Thinkpad P43s \(20rx\)
Subscribe
Thinkpad P43s \(20rx\) Firmware
Subscribe
Thinkpad P52 \(20mx\)
Subscribe
Thinkpad P52 \(20mx\) Firmware
Subscribe
Thinkpad P53 \(20qx\)
Subscribe
Thinkpad P53 \(20qx\) Firmware
Subscribe
Thinkpad P53s \(20nx\)
Subscribe
Thinkpad P53s \(20nx\) Firmware
Subscribe
Thinkpad P72 \(20mx\)
Subscribe
Thinkpad P72 \(20mx\) Firmware
Subscribe
Thinkpad P73 \(20qx\)
Subscribe
Thinkpad P73 \(20qx\) Firmware
Subscribe
Thinkpad R14
Subscribe
Thinkpad R14 Firmware
Subscribe
Thinkpad R490
Subscribe
Thinkpad R490 Firmware
Subscribe
Thinkpad R590
Subscribe
Thinkpad R590 Firmware
Subscribe
Thinkpad S2 Yoga 4th Gen
Subscribe
Thinkpad S2 Yoga 4th Gen Firmware
Subscribe
Thinkpad S3
Subscribe
Thinkpad S3 Firmware
Subscribe
Thinkpad S3 Gen 2
Subscribe
Thinkpad S3 Gen 2 Firmware
Subscribe
Thinkpad T490 \(20nx\)
Subscribe
Thinkpad T490 \(20nx\) Firmware
Subscribe
Thinkpad T490 \(20qx\)
Subscribe
Thinkpad T490 \(20qx\) Firmware
Subscribe
Thinkpad T490 \(20rx\)
Subscribe
Thinkpad T490 \(20rx\) Firmware
Subscribe
Thinkpad T490s \(20nx\)
Subscribe
Thinkpad T490s \(20nx\) Firmware
Subscribe
Thinkpad T590 \(20nx\)
Subscribe
Thinkpad T590 \(20nx\) Firmware
Subscribe
Thinkpad X1 Carbon \(20qx\)
Subscribe
Thinkpad X1 Carbon \(20qx\) Firmware
Subscribe
Thinkpad X1 Carbon \(20rx\)
Subscribe
Thinkpad X1 Carbon \(20rx\) Firmware
Subscribe
Thinkpad X1 Extreme \(20mx\)
Subscribe
Thinkpad X1 Extreme \(20mx\) Firmware
Subscribe
Thinkpad X1 Extreme \(20qx\)
Subscribe
Thinkpad X1 Extreme \(20qx\) Firmware
Subscribe
Thinkpad X1 Yoga \(20qx\)
Subscribe
Thinkpad X1 Yoga \(20qx\) Firmware
Subscribe
Thinkpad X1 Yoga \(20sx\)
Subscribe
Thinkpad X1 Yoga \(20sx\) Firmware
Subscribe
Thinkpad X390 \(20qx\)
Subscribe
Thinkpad X390 \(20qx\) Firmware
Subscribe
Thinkpad X390 \(20sx\)
Subscribe
Thinkpad X390 \(20sx\) Firmware
Subscribe
Thinkpad X390 Yoga
Subscribe
Thinkpad X390 Yoga Firmware
Subscribe
|
Advisories
| Source | ID | Title |
|---|---|---|
 EUVD |
EUVD-2020-29203 | Lenovo implemented Intel CSME Anti-rollback ARB protections on some ThinkPad models to prevent roll back of CSME Firmware in flash. |
Fixes
Solution
Update system firmware to the version (or newer) indicated for your model in the Product Impact section of LEN-30042.
Workaround
No workaround given by the vendor.
References
| Link | Providers |
|---|---|
| https://support.lenovo.com/us/en/product_security/LEN-30042 |
|
History
No history.
Projects
Sign in to view the affected projects.
MITRE
Status: PUBLISHED
Assigner: lenovo
Published:
Updated: 2024-09-16T19:56:08.433Z
Reserved: 2020-01-28T00:00:00
Link: CVE-2020-8336
Vulnrichment
No data.
NVD
Status : Modified
Published: 2020-06-09T20:15:22.693
Modified: 2024-11-21T05:38:44.077
Link: CVE-2020-8336
Redhat
No data.
OpenCVE Enrichment
No data.
Weaknesses