CVE-2020-8336
First published: Tue Jun 09 2020(Updated: )
Lenovo implemented Intel CSME Anti-rollback ARB protections on some ThinkPad models to prevent roll back of CSME Firmware in flash.
Credit: psirt@lenovo.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Lenovo Thinkpad E14 Firmware | <2020-07-10 | |
| Lenovo Thinkpad E14 | ||
| Lenovo Thinkpad E15 Firmware | <2020-07-10 | |
| Lenovo Thinkpad E15 | ||
| Lenovo Thinkpad R14 Firmware | <2020-07-10 | |
| Lenovo Thinkpad R14 | ||
| Lenovo Thinkpad S3 Gen 2 Firmware | <2020-07-10 | |
| Lenovo Thinkpad S3 Gen 2 | ||
| Lenovo Thinkpad E490s Firmware | <2020-07-10 | |
| Lenovo Thinkpad E490s | ||
| Lenovo Thinkpad S3 Firmware | <2020-07-10 | |
| Lenovo Thinkpad S3 | ||
| Lenovo Thinkpad E490 Firmware | <2020-07-10 | |
| Lenovo Thinkpad E490 | ||
| Lenovo Thinkpad E590 Firmware | <2020-07-10 | |
| Lenovo Thinkpad E590 | ||
| Lenovo Thinkpad R490 Firmware | <2020-07-10 | |
| Lenovo Thinkpad R490 | ||
| Lenovo Thinkpad R590 Firmware | <2020-07-10 | |
| Lenovo Thinkpad R590 | ||
| Lenovo Thinkpad L13 1st Gen Firmware | <2020-07-10 | |
| Lenovo Thinkpad L13 1st Gen | ||
| Lenovo Thinkpad L1415 Gen 1 Firmware | <2020-07-10 | |
| Lenovo Thinkpad L1415 Gen 1 | ||
| Lenovo Thinkpad L390 Yoga Firmware | <2020-07-10 | |
| Lenovo Thinkpad L390 Yoga | ||
| Lenovo Thinkpad S2 Yoga 4th Gen Firmware | <2020-07-10 | |
| Lenovo Thinkpad S2 Yoga 4th Gen | ||
| Lenovo Thinkpad L490 Firmware | <2020-07-10 | |
| Lenovo Thinkpad L490 | ||
| Lenovo Thinkpad L590 Firmware | <2020-07-10 | |
| Lenovo Thinkpad L590 | ||
| Lenovo Thinkpad P1 \(20mx\) Firmware | <n2eet47w | |
| Lenovo Thinkpad P1 \(20mx\) | ||
| Lenovo Thinkpad P1 \(20qx\) Firmware | <n2oet44w | |
| Lenovo Thinkpad P1 \(20qx\) | ||
| Lenovo Thinkpad P43s \(20rx\) Firmware | <n2iet88w | |
| Lenovo Thinkpad P43s \(20rx\) | ||
| Lenovo Thinkpad P52 \(20mx\) Firmware | <n2cet51w-1.34 | |
| Lenovo Thinkpad P52 \(20mx\) | ||
| Lenovo Thinkpad P53 \(20qx\) Firmware | <n2net37w | |
| Lenovo Thinkpad P53 \(20qx\) | ||
| Lenovo Thinkpad P53s \(20nx\) Firmware | <n2iet88w | |
| Lenovo Thinkpad P53s \(20nx\) | ||
| Lenovo Thinkpad P72 \(20mx\) Firmware | <n2cet51w | |
| Lenovo Thinkpad P72 \(20mx\) | ||
| Lenovo Thinkpad P73 \(20qx\) Firmware | <n2net37w | |
| Lenovo Thinkpad P73 \(20qx\) | ||
| Lenovo Thinkpad T490 \(20nx\) Firmware | <n2iet88w | |
| Lenovo Thinkpad T490 \(20nx\) | ||
| Lenovo Thinkpad T490 \(20qx\) Firmware | <n2iet88w | |
| Lenovo Thinkpad T490 \(20qx\) | ||
| Lenovo Thinkpad T490 \(20rx\) Firmware | <n2iet88w | |
| Lenovo Thinkpad T490 \(20rx\) | ||
| Lenovo Thinkpad T490s \(20nx\) Firmware | <n2jet87w | |
| Lenovo Thinkpad T490s \(20nx\) | ||
| Lenovo Thinkpad T590 \(20nx\) Firmware | <n2iet88w | |
| Lenovo Thinkpad T590 \(20nx\) | ||
| Lenovo Thinkpad X1 Carbon \(20qx\) Firmware | <n2het47w | |
| Lenovo Thinkpad X1 Carbon \(20qx\) | ||
| Lenovo Thinkpad X1 Carbon \(20rx\) Firmware | <n2het47w | |
| Lenovo Thinkpad X1 Carbon \(20rx\) | ||
| Lenovo Thinkpad X1 Extreme \(20mx\) Firmware | <n2eet47w | |
| Lenovo Thinkpad X1 Extreme \(20mx\) | ||
| Lenovo Thinkpad X1 Extreme \(20qx\) Firmware | <n2oet44w | |
| Lenovo Thinkpad X1 Extreme \(20qx\) | ||
| Lenovo Thinkpad X1 Yoga \(20qx\) Firmware | <n2het47w | |
| Lenovo Thinkpad X1 Yoga \(20qx\) | ||
| Lenovo Thinkpad X1 Yoga \(20sx\) Firmware | <n2het47w | |
| Lenovo Thinkpad X1 Yoga \(20sx\) | ||
| Lenovo Thinkpad X390 \(20qx\) Firmware | <n2jet87w | |
| Lenovo Thinkpad X390 \(20qx\) | ||
| Lenovo Thinkpad X390 \(20sx\) Firmware | <n2set18w | |
| Lenovo Thinkpad X390 \(20sx\) | ||
| Lenovo Thinkpad X390 Yoga Firmware | <n2let74w | |
| Lenovo Thinkpad X390 Yoga |
Remedy
Update system firmware to the version (or newer) indicated for your model in the Product Impact section of LEN-30042.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-index
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/references
- agent/author
- agent/severity
- agent/remedy
- agent/tags
- agent/first-publish-date
- agent/description
- agent/event
- vendor/lenovo
- canonical/lenovo thinkpad e14 firmware
- canonical/lenovo thinkpad e14
- canonical/lenovo thinkpad e15 firmware
- canonical/lenovo thinkpad e15
- canonical/lenovo thinkpad r14 firmware
- canonical/lenovo thinkpad r14
- canonical/lenovo thinkpad s3 gen 2 firmware
- canonical/lenovo thinkpad s3 gen 2
- canonical/lenovo thinkpad e490s firmware
- canonical/lenovo thinkpad e490s
- canonical/lenovo thinkpad s3 firmware
- canonical/lenovo thinkpad s3
- canonical/lenovo thinkpad e490 firmware
- canonical/lenovo thinkpad e490
- canonical/lenovo thinkpad e590 firmware
- canonical/lenovo thinkpad e590
- canonical/lenovo thinkpad r490 firmware
- canonical/lenovo thinkpad r490
- canonical/lenovo thinkpad r590 firmware
- canonical/lenovo thinkpad r590
- canonical/lenovo thinkpad l13 1st gen firmware
- canonical/lenovo thinkpad l13 1st gen
- canonical/lenovo thinkpad l1415 gen 1 firmware
- canonical/lenovo thinkpad l1415 gen 1
- canonical/lenovo thinkpad l390 yoga firmware
- canonical/lenovo thinkpad l390 yoga
- canonical/lenovo thinkpad s2 yoga 4th gen firmware
- canonical/lenovo thinkpad s2 yoga 4th gen
- canonical/lenovo thinkpad l490 firmware
- canonical/lenovo thinkpad l490
- canonical/lenovo thinkpad l590 firmware
- canonical/lenovo thinkpad l590
- canonical/lenovo thinkpad p1 \(20mx\) firmware
- canonical/lenovo thinkpad p1 \(20mx\)
- canonical/lenovo thinkpad p1 \(20qx\) firmware
- canonical/lenovo thinkpad p1 \(20qx\)
- canonical/lenovo thinkpad p43s \(20rx\) firmware
- canonical/lenovo thinkpad p43s \(20rx\)
- canonical/lenovo thinkpad p52 \(20mx\) firmware
- canonical/lenovo thinkpad p52 \(20mx\)
- canonical/lenovo thinkpad p53 \(20qx\) firmware
- canonical/lenovo thinkpad p53 \(20qx\)
- canonical/lenovo thinkpad p53s \(20nx\) firmware
- canonical/lenovo thinkpad p53s \(20nx\)
- canonical/lenovo thinkpad p72 \(20mx\) firmware
- canonical/lenovo thinkpad p72 \(20mx\)
- canonical/lenovo thinkpad p73 \(20qx\) firmware
- canonical/lenovo thinkpad p73 \(20qx\)
- canonical/lenovo thinkpad t490 \(20nx\) firmware
- canonical/lenovo thinkpad t490 \(20nx\)
- canonical/lenovo thinkpad t490 \(20qx\) firmware
- canonical/lenovo thinkpad t490 \(20qx\)
- canonical/lenovo thinkpad t490 \(20rx\) firmware
- canonical/lenovo thinkpad t490 \(20rx\)
- canonical/lenovo thinkpad t490s \(20nx\) firmware
- canonical/lenovo thinkpad t490s \(20nx\)
- canonical/lenovo thinkpad t590 \(20nx\) firmware
- canonical/lenovo thinkpad t590 \(20nx\)
- canonical/lenovo thinkpad x1 carbon \(20qx\) firmware
- canonical/lenovo thinkpad x1 carbon \(20qx\)
- canonical/lenovo thinkpad x1 carbon \(20rx\) firmware
- canonical/lenovo thinkpad x1 carbon \(20rx\)
- canonical/lenovo thinkpad x1 extreme \(20mx\) firmware
- canonical/lenovo thinkpad x1 extreme \(20mx\)
- canonical/lenovo thinkpad x1 extreme \(20qx\) firmware
- canonical/lenovo thinkpad x1 extreme \(20qx\)
- canonical/lenovo thinkpad x1 yoga \(20qx\) firmware
- canonical/lenovo thinkpad x1 yoga \(20qx\)
- canonical/lenovo thinkpad x1 yoga \(20sx\) firmware
- canonical/lenovo thinkpad x1 yoga \(20sx\)
- canonical/lenovo thinkpad x390 \(20qx\) firmware
- canonical/lenovo thinkpad x390 \(20qx\)
- canonical/lenovo thinkpad x390 \(20sx\) firmware
- canonical/lenovo thinkpad x390 \(20sx\)
- canonical/lenovo thinkpad x390 yoga firmware
- canonical/lenovo thinkpad x390 yoga