CVE-2020-8320
First published: Tue Jun 09 2020(Updated: )
An internal shell was included in BIOS image in some ThinkPad models that could allow escalation of privilege.
Credit: psirt@lenovo.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Lenovo ThinkPad 11e Yoga Gen 6 Firmware | <2020-07-10 | |
| Lenovo ThinkPad 11e Yoga Gen 6 Firmware | ||
| Lenovo ThinkPad 11e YOGA firmware | <2020-07-10 | |
| Lenovo ThinkPad 11e firmware | ||
| Lenovo Yoga 11e 3rd Gen Firmware | <2020-07-10 | |
| Lenovo Yoga 11e 3rd Gen Firmware | ||
| Lenovo Yoga 11e 4th Gen Firmware | <2020-07-10 | |
| Lenovo Yoga 11e 4th Gen Firmware | ||
| Lenovo ThinkPad Yoga 11e 5th Gen | <2020-07-10 | |
| Lenovo ThinkPad Yoga 11e 5th Gen Firmware | ||
| Lenovo ThinkPad 13 Gen 2 Firmware | <2020-07-10 | |
| Lenovo ThinkPad 13 Gen 2 | ||
| Lenovo ThinkPad 13 firmware | <2020-07-10 | |
| Lenovo ThinkPad 13 firmware | ||
| Lenovo ThinkPad A275 Firmware | <2020-07-10 | |
| Lenovo ThinkPad A275 Firmware | ||
| Lenovo ThinkPad A285 Firmware | <2020-07-10 | |
| Lenovo ThinkPad A285 Firmware | ||
| Lenovo ThinkPad A475 Firmware | <2020-07-10 | |
| Lenovo ThinkPad A475 Firmware | ||
| Lenovo ThinkPad A485 Firmware | <2020-07-10 | |
| Lenovo ThinkPad A485 Firmware | ||
| Lenovo ThinkPad E14 Firmware | <2020-07-10 | |
| Lenovo Thinkpad E14 | ||
| Lenovo ThinkPad E15 Firmware | <2020-07-10 | |
| Lenovo ThinkPad E15 | ||
| Lenovo ThinkPad R14 Firmware | <2020-07-10 | |
| Lenovo ThinkPad R14 | ||
| Lenovo ThinkPad S3 2nd Gen Firmware | <2020-07-10 | |
| Lenovo ThinkPad S3 Gen 2 Firmware | ||
| Lenovo ThinkPad E455 Firmware | <2020-07-10 | |
| Lenovo ThinkPad E455 Firmware | ||
| lenovo ThinkPad e555 firmware | <2020-07-10 | |
| Lenovo ThinkPad E555 | ||
| Lenovo ThinkPad e460 firmware | <2020-07-10 | |
| Lenovo ThinkPad E460 | ||
| Lenovo ThinkPad e560 firmware | <2020-07-10 | |
| Lenovo ThinkPad E560 | ||
| Lenovo ThinkPad E465 Firmware | <2020-07-10 | |
| Lenovo ThinkPad E465 BIOS | ||
| Lenovo ThinkPad E565 Firmware | <2020-07-10 | |
| Lenovo ThinkPad E565 BIOS | ||
| Lenovo ThinkPad e470 firmware | <2020-07-10 | |
| Lenovo ThinkPad E470 | ||
| Lenovo ThinkPad E570p Firmware | <2020-07-10 | |
| Lenovo ThinkPad E570 Firmware | ||
| Lenovo ThinkPad E475 Firmware | <2020-07-10 | |
| Lenovo ThinkPad E475 Firmware | ||
| Lenovo ThinkPad E575 Firmware | <2020-07-10 | |
| Lenovo ThinkPad E575 Firmware | ||
| Lenovo ThinkPad e480 firmware | <2020-07-10 | |
| Lenovo ThinkPad E480 | ||
| Lenovo ThinkPad e580 firmware | <2020-07-10 | |
| Lenovo Thinkpad E580 | ||
| Lenovo ThinkPad E485 Firmware | <2020-07-10 | |
| Lenovo ThinkPad E485 | ||
| Lenovo ThinkPad E585 Firmware | <2020-07-10 | |
| Lenovo ThinkPad E585 Firmware | ||
| Lenovo ThinkPad E490s Firmware | <2020-07-10 | |
| Lenovo ThinkPad E490s Firmware | ||
| Lenovo ThinkPad S3 Firmware | <2020-07-10 | |
| Lenovo ThinkPad S3 Firmware | ||
| Lenovo ThinkPad E490 Firmware | <2020-07-10 | |
| Lenovo ThinkPad E490 | ||
| Lenovo ThinkPad E590 Firmware | <2020-07-10 | |
| Lenovo ThinkPad E590 | ||
| Lenovo ThinkPad r490 firmware | <2020-07-10 | |
| Lenovo ThinkPad r490 firmware | ||
| Lenovo ThinkPad R590 Firmware | <2020-07-10 | |
| Lenovo ThinkPad R590 Firmware | ||
| Lenovo ThinkPad L13 | <2020-07-10 | |
| Lenovo ThinkPad L13 | ||
| lenovo ThinkPad l1415 firmware | <2020-07-10 | |
| Lenovo ThinkPad L1415 | ||
| Lenovo ThinkPad L380 Firmware | <2020-07-10 | |
| Lenovo ThinkPad L380 | ||
| Lenovo ThinkPad s3 3rd gen firmware | <2020-07-10 | |
| Lenovo ThinkPad S3 | ||
| Lenovo ThinkPad L380 Yoga Firmware | <2020-07-10 | |
| Lenovo ThinkPad L380 Yoga Firmware | ||
| Lenovo ThinkPad S2 Yoga 3rd Gen Firmware | <2020-07-10 | |
| Lenovo ThinkPad S2 Yoga 3rd Gen Firmware | ||
| Lenovo ThinkPad L390 Yoga Firmware | <2020-07-10 | |
| Lenovo ThinkPad L390 Yoga Firmware | ||
| Lenovo ThinkPad S2 Yoga 4th Gen | <2020-07-10 | |
| Lenovo ThinkPad S2 Yoga 4th Gen Firmware | ||
| Lenovo ThinkPad L460 Firmware | <2020-07-10 | |
| Lenovo ThinkPad L460 Firmware | ||
| Lenovo ThinkPad L470 Firmware | <2020-07-10 | |
| Lenovo ThinkPad L470 Firmware | ||
| Lenovo ThinkPad L480 Firmware | <2020-07-10 | |
| Lenovo ThinkPad L480 | ||
| Lenovo ThinkPad L580 Firmware | <2020-07-10 | |
| Lenovo ThinkPad L580 Firmware | ||
| Lenovo ThinkPad L490 Firmware | <2020-07-10 | |
| Lenovo ThinkPad L490 Firmware | ||
| Lenovo ThinkPad L590 Firmware | <2020-07-10 | |
| Lenovo ThinkPad L590 Firmware | ||
| Lenovo ThinkPad L560 Firmware | <2020-07-03 | |
| Lenovo ThinkPad L560 Firmware | ||
| Lenovo ThinkPad L570 Firmware | <2020-07-10 | |
| Lenovo ThinkPad L570 Firmware | ||
| Lenovo ThinkPad P1 Firmware | <n2eet46w | |
| Lenovo ThinkPad P1 Firmware | ||
| Lenovo ThinkPad P43s Firmware | <n2iet87w | |
| Lenovo Thinkpad P43s Firmware | ||
| Lenovo ThinkPad P50s Firmware | <2020-07-17 | |
| Lenovo ThinkPad P50 Firmware | ||
| Lenovo ThinkPad P50s Firmware | <2020-07-24 | |
| Lenovo ThinkPad P50s BIOS | ||
| Lenovo ThinkPad P51 Firmware | <2020-07-03 | |
| Lenovo ThinkPad P51 | ||
| Lenovo ThinkPad P51s (20HX) Firmware | <2020-07-03 | |
| Lenovo ThinkPad P51s Firmware | ||
| Lenovo ThinkPad P52 Firmware | <n2cet51w | |
| Lenovo ThinkPad P52 | ||
| Lenovo ThinkPad P52s Firmware | <2020-07-03 | |
| Lenovo ThinkPad P52s Firmware | ||
| Lenovo ThinkPad P53 Firmware | <n2net37w | |
| Lenovo ThinkPad P53s | ||
| Lenovo ThinkPad P53s Firmware | <n2iet87w | |
| Lenovo ThinkPad P53s Firmware | ||
| Lenovo ThinkPad P70 Firmware | <2020-07-17 | |
| Lenovo ThinkPad P70 BIOS | ||
| Lenovo ThinkPad P71 Firmware | <=2020-07-17 | |
| Lenovo ThinkPad P71 Firmware | ||
| Lenovo ThinkPad P72 Firmware | <n2cet51w | |
| Lenovo ThinkPad P72 Firmware | ||
| Lenovo ThinkPad P73 Firmware | <n2net37w | |
| Lenovo ThinkPad P73 Firmware | ||
| Lenovo ThinkPad S5 2nd Generation Firmware | <2020-07-10 | |
| Lenovo ThinkPad S5 2nd Gen Firmware | ||
| Lenovo ThinkPad S5 2nd Gen Firmware | <2020-07-10 | |
| Lenovo ThinkPad S5 2nd Generation | ||
| Lenovo ThinkPad e560p firmware | <2020-07-10 | |
| Lenovo ThinkPad E560P BIOS | ||
| Lenovo ThinkPad T25 Firmware | <n1qet87w | |
| Lenovo ThinkPad T25 Firmware | ||
| Lenovo ThinkPad T460 firmware | <2020-07-10 | |
| Lenovo ThinkPad T460 firmware | ||
| Lenovo ThinkPad T460p firmware | <2020-07-10 | |
| Lenovo ThinkPad T460p BIOS | ||
| Lenovo ThinkPad T460s Firmware | <2020-06-19 | |
| Lenovo ThinkPad T460s Firmware | ||
| Lenovo ThinkPad T470 firmware | <n1qet87w | |
| Lenovo ThinkPad T470p | ||
| Lenovo ThinkPad T470p firmware | <2020-07-10 | |
| Lenovo ThinkPad T470p | ||
| Lenovo ThinkPad T470s Firmware | <n1wet58w | |
| Lenovo ThinkPad T470s Firmware | ||
| Lenovo ThinkPad T480 Firmware | <n24et56w | |
| Lenovo ThinkPad T480 | ||
| Lenovo ThinkPad T480s Firmware | <n22et62w | |
| Lenovo ThinkPad T480s Firmware | ||
| Lenovo ThinkPad T490 Firmware | <n2iet87w | |
| Lenovo ThinkPad T490 (20QX) | ||
| Lenovo ThinkPad T490s Firmware | <n2jet87w | |
| Lenovo ThinkPad T490s Firmware | ||
| Lenovo ThinkPad T560 Firmware | <2020-07-24 | |
| Lenovo ThinkPad T560 Firmware | ||
| Lenovo ThinkPad T570 Firmware | <2020-07-03 | |
| Lenovo ThinkPad T570 Firmware | ||
| Lenovo ThinkPad T580 Firmware | <2020-07-03 | |
| Lenovo ThinkPad T580 | ||
| Lenovo ThinkPad T590 Firmware | <n2iet87w | |
| Lenovo ThinkPad T590 | ||
| Lenovo ThinkPad X1 Carbon Firmware | <n1met60w | |
| Lenovo ThinkPad X1 Carbon | ||
| Lenovo ThinkPad X1 Yoga (20SX) Firmware | <2020-07-17 | |
| Lenovo ThinkPad X1 Yoga | ||
| Lenovo ThinkPad X1 Extreme 2nd Gen Firmware | <n2oet43w | |
| Lenovo ThinkPad X1 Extreme (20MX) | ||
| Lenovo ThinkPad X1 Tablet Firmware | <2020-07-24 | |
| Lenovo ThinkPad X1 Tablet Firmware | ||
| Lenovo ThinkPad x260 firmware | <2020-07-10 | |
| Lenovo ThinkPad x260 | ||
| Lenovo ThinkPad x270 firmware | <2020-07-10 | |
| Lenovo ThinkPad X270 | ||
| Lenovo ThinkPad x280 firmware | <n20et52w | |
| Lenovo ThinkPad X280 | ||
| Lenovo ThinkPad x380 Yoga Firmware | <2020-07-10 | |
| Lenovo ThinkPad X380 Yoga | ||
| Lenovo ThinkPad x390 Firmware | <2020-07-07 | |
| Lenovo ThinkPad X390 Yoga | ||
| Lenovo ThinkPad X390 Yoga Firmware | <2020-06-24 | |
| Lenovo ThinkPad X390 Yoga Firmware | ||
| Lenovo ThinkPad x395 firmware | <2020-07-10 | |
| Lenovo ThinkPad x395 firmware | ||
| Lenovo ThinkPad Yoga 260 S1 Firmware | <2020-07-07 | |
| Lenovo ThinkPad Yoga 260 Firmware | ||
| Lenovo ThinkPad S1 Firmware | <2020-07-07 | |
| Lenovo ThinkPad S1 Firmware | ||
| Lenovo ThinkPad Yoga 370 Firmware | <2020-07-10 | |
| Lenovo ThinkPad Yoga 370 Firmware | ||
| Lenovo ThinkPad s1 3rd firmware | <2020-07-10 | |
| Lenovo ThinkPad S1 | ||
| Lenovo ThinkPad T495 Firmware | <2020-07-10 | |
| Lenovo ThinkPad T495 Drift Firmware | ||
| Lenovo ThinkPad T495s Jazz Firmware | <2020-07-10 | |
| Lenovo ThinkPad T495s jazz firmware |
Remedy
Update system firmware to the version (or newer) indicated for your model in the Product Impact section of LEN-30042.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2020-8320?
CVE-2020-8320 has a high severity rating due to its potential for privilege escalation.
How do I fix CVE-2020-8320?
To fix CVE-2020-8320, users should update the BIOS firmware to a version released after July 10, 2020.
Who is affected by CVE-2020-8320?
CVE-2020-8320 affects several Lenovo ThinkPad models, specifically those with BIOS firmware versions prior to July 10, 2020.
What type of vulnerability is CVE-2020-8320?
CVE-2020-8320 is a vulnerability related to privilege escalation due to an internal shell included in the BIOS.
Is there a workaround for CVE-2020-8320?
There are no specific workarounds for CVE-2020-8320; the best mitigation is to update the affected firmware.
- agent/weakness
- agent/type
- agent/references
- agent/author
- agent/severity
- agent/remedy
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/event
- agent/first-publish-date
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/lenovo
- canonical/lenovo thinkpad 11e yoga gen 6 firmware
- canonical/lenovo thinkpad 11e yoga firmware
- canonical/lenovo thinkpad 11e firmware
- canonical/lenovo yoga 11e 3rd gen firmware
- canonical/lenovo yoga 11e 4th gen firmware
- canonical/lenovo thinkpad yoga 11e 5th gen
- canonical/lenovo thinkpad yoga 11e 5th gen firmware
- canonical/lenovo thinkpad 13 gen 2 firmware
- canonical/lenovo thinkpad 13 gen 2
- canonical/lenovo thinkpad 13 firmware
- canonical/lenovo thinkpad a275 firmware
- canonical/lenovo thinkpad a285 firmware
- canonical/lenovo thinkpad a475 firmware
- canonical/lenovo thinkpad a485 firmware
- canonical/lenovo thinkpad e14 firmware
- canonical/lenovo thinkpad e14
- canonical/lenovo thinkpad e15 firmware
- canonical/lenovo thinkpad e15
- canonical/lenovo thinkpad r14 firmware
- canonical/lenovo thinkpad r14
- canonical/lenovo thinkpad s3 2nd gen firmware
- canonical/lenovo thinkpad s3 gen 2 firmware
- canonical/lenovo thinkpad e455 firmware
- canonical/lenovo thinkpad e555 firmware
- canonical/lenovo thinkpad e555
- canonical/lenovo thinkpad e460 firmware
- canonical/lenovo thinkpad e460
- canonical/lenovo thinkpad e560 firmware
- canonical/lenovo thinkpad e560
- canonical/lenovo thinkpad e465 firmware
- canonical/lenovo thinkpad e465 bios
- canonical/lenovo thinkpad e565 firmware
- canonical/lenovo thinkpad e565 bios
- canonical/lenovo thinkpad e470 firmware
- canonical/lenovo thinkpad e470
- canonical/lenovo thinkpad e570p firmware
- canonical/lenovo thinkpad e570 firmware
- canonical/lenovo thinkpad e475 firmware
- canonical/lenovo thinkpad e575 firmware
- canonical/lenovo thinkpad e480 firmware
- canonical/lenovo thinkpad e480
- canonical/lenovo thinkpad e580 firmware
- canonical/lenovo thinkpad e580
- canonical/lenovo thinkpad e485 firmware
- canonical/lenovo thinkpad e485
- canonical/lenovo thinkpad e585 firmware
- canonical/lenovo thinkpad e490s firmware
- canonical/lenovo thinkpad s3 firmware
- canonical/lenovo thinkpad e490 firmware
- canonical/lenovo thinkpad e490
- canonical/lenovo thinkpad e590 firmware
- canonical/lenovo thinkpad e590
- canonical/lenovo thinkpad r490 firmware
- canonical/lenovo thinkpad r590 firmware
- canonical/lenovo thinkpad l13
- canonical/lenovo thinkpad l1415 firmware
- canonical/lenovo thinkpad l1415
- canonical/lenovo thinkpad l380 firmware
- canonical/lenovo thinkpad l380
- canonical/lenovo thinkpad s3 3rd gen firmware
- canonical/lenovo thinkpad s3
- canonical/lenovo thinkpad l380 yoga firmware
- canonical/lenovo thinkpad s2 yoga 3rd gen firmware
- canonical/lenovo thinkpad l390 yoga firmware
- canonical/lenovo thinkpad s2 yoga 4th gen
- canonical/lenovo thinkpad s2 yoga 4th gen firmware
- canonical/lenovo thinkpad l460 firmware
- canonical/lenovo thinkpad l470 firmware
- canonical/lenovo thinkpad l480 firmware
- canonical/lenovo thinkpad l480
- canonical/lenovo thinkpad l580 firmware
- canonical/lenovo thinkpad l490 firmware
- canonical/lenovo thinkpad l590 firmware
- canonical/lenovo thinkpad l560 firmware
- canonical/lenovo thinkpad l570 firmware
- canonical/lenovo thinkpad p1 firmware
- canonical/lenovo thinkpad p43s firmware
- canonical/lenovo thinkpad p50s firmware
- canonical/lenovo thinkpad p50 firmware
- canonical/lenovo thinkpad p50s bios
- canonical/lenovo thinkpad p51 firmware
- canonical/lenovo thinkpad p51
- canonical/lenovo thinkpad p51s (20hx) firmware
- canonical/lenovo thinkpad p51s firmware
- canonical/lenovo thinkpad p52 firmware
- canonical/lenovo thinkpad p52
- canonical/lenovo thinkpad p52s firmware
- canonical/lenovo thinkpad p53 firmware
- canonical/lenovo thinkpad p53s
- canonical/lenovo thinkpad p53s firmware
- canonical/lenovo thinkpad p70 firmware
- canonical/lenovo thinkpad p70 bios
- canonical/lenovo thinkpad p71 firmware
- version/lenovo thinkpad p71 firmware/2020-07-17
- canonical/lenovo thinkpad p72 firmware
- canonical/lenovo thinkpad p73 firmware
- canonical/lenovo thinkpad s5 2nd generation firmware
- canonical/lenovo thinkpad s5 2nd gen firmware
- canonical/lenovo thinkpad s5 2nd generation
- canonical/lenovo thinkpad e560p firmware
- canonical/lenovo thinkpad e560p bios
- canonical/lenovo thinkpad t25 firmware
- canonical/lenovo thinkpad t460 firmware
- canonical/lenovo thinkpad t460p firmware
- canonical/lenovo thinkpad t460p bios
- canonical/lenovo thinkpad t460s firmware
- canonical/lenovo thinkpad t470 firmware
- canonical/lenovo thinkpad t470p
- canonical/lenovo thinkpad t470p firmware
- canonical/lenovo thinkpad t470s firmware
- canonical/lenovo thinkpad t480 firmware
- canonical/lenovo thinkpad t480
- canonical/lenovo thinkpad t480s firmware
- canonical/lenovo thinkpad t490 firmware
- canonical/lenovo thinkpad t490 (20qx)
- canonical/lenovo thinkpad t490s firmware
- canonical/lenovo thinkpad t560 firmware
- canonical/lenovo thinkpad t570 firmware
- canonical/lenovo thinkpad t580 firmware
- canonical/lenovo thinkpad t580
- canonical/lenovo thinkpad t590 firmware
- canonical/lenovo thinkpad t590
- canonical/lenovo thinkpad x1 carbon firmware
- canonical/lenovo thinkpad x1 carbon
- canonical/lenovo thinkpad x1 yoga (20sx) firmware
- canonical/lenovo thinkpad x1 yoga
- canonical/lenovo thinkpad x1 extreme 2nd gen firmware
- canonical/lenovo thinkpad x1 extreme (20mx)
- canonical/lenovo thinkpad x1 tablet firmware
- canonical/lenovo thinkpad x260 firmware
- canonical/lenovo thinkpad x260
- canonical/lenovo thinkpad x270 firmware
- canonical/lenovo thinkpad x270
- canonical/lenovo thinkpad x280 firmware
- canonical/lenovo thinkpad x280
- canonical/lenovo thinkpad x380 yoga firmware
- canonical/lenovo thinkpad x380 yoga
- canonical/lenovo thinkpad x390 firmware
- canonical/lenovo thinkpad x390 yoga
- canonical/lenovo thinkpad x390 yoga firmware
- canonical/lenovo thinkpad x395 firmware
- canonical/lenovo thinkpad yoga 260 s1 firmware
- canonical/lenovo thinkpad yoga 260 firmware
- canonical/lenovo thinkpad s1 firmware
- canonical/lenovo thinkpad yoga 370 firmware
- canonical/lenovo thinkpad s1 3rd firmware
- canonical/lenovo thinkpad s1
- canonical/lenovo thinkpad t495 firmware
- canonical/lenovo thinkpad t495 drift firmware
- canonical/lenovo thinkpad t495s jazz firmware