A potential vulnerability in the SMI callback function used in the VariableServiceSmm driver in some Lenovo Notebook models may allow arbitrary code execution.
Metrics
Affected Vendors & Products
Advisories
Source | ID | Title |
---|---|---|
![]() |
EUVD-2020-29221 | A potential vulnerability in the SMI callback function used in the VariableServiceSmm driver in some Lenovo Notebook models may allow arbitrary code execution. |
Fixes
Solution
Update system firmware to the version (or newer) indicated for your model in the Product Impact section of LEN-49266.
Workaround
No workaround given by the vendor.
References
Link | Providers |
---|---|
https://support.lenovo.com/us/en/product_security/LEN-49266 |
![]() ![]() |
History
No history.

Status: PUBLISHED
Assigner: lenovo
Published:
Updated: 2024-08-04T09:56:28.369Z
Reserved: 2020-01-28T00:00:00
Link: CVE-2020-8354

No data.

Status : Modified
Published: 2020-11-11T18:15:11.843
Modified: 2024-11-21T05:38:46.083
Link: CVE-2020-8354

No data.

No data.