CVE-2020-8324: Input Validation
First published: Tue Apr 14 2020(Updated: )
A vulnerability was reported in LenovoAppScenarioPluginSystem for Lenovo System Interface Foundation prior to version 1.2.184.31 that could allow unsigned DLL files to be executed.
Credit: psirt@lenovo.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Lenovo System Interface Foundation | <1.2.184.31 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this Lenovo System Interface Foundation vulnerability?
The vulnerability ID for this Lenovo System Interface Foundation vulnerability is CVE-2020-8324.
What is the severity of CVE-2020-8324?
The severity of CVE-2020-8324 is medium with a severity value of 5.5.
What is the affected software for CVE-2020-8324?
The affected software for CVE-2020-8324 is Lenovo System Interface Foundation prior to version 1.2.184.31.
How can unsigned DLL files be executed by CVE-2020-8324?
CVE-2020-8324 allows unsigned DLL files to be executed.
How can I fix the CVE-2020-8324 vulnerability?
To fix the CVE-2020-8324 vulnerability, update Lenovo System Interface Foundation to version 1.2.184.31 or later.
- collector/nvd-index
- agent/weakness
- agent/references
- agent/author
- agent/severity
- agent/tags
- agent/type
- agent/event
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- vendor/lenovo
- canonical/lenovo system interface foundation