CVE-2020-8346
First published: Tue Sep 15 2020(Updated: )
A denial of service vulnerability was reported in the Lenovo Vantage component called Lenovo System Interface Foundation prior to version 1.1.19.5 that could allow configuration files to be written to non-standard locations.
Credit: psirt@lenovo.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Lenovo System Interface Foundation | <1.1.19.5 |
Remedy
To update Lenovo System Interface Foundation to version 1.1.19.5 or later, follow these steps: Update Lenovo Vantage to the latest version from the Microsoft Store. Re-launch Lenovo Vantage to complete the update.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this Lenovo Vantage component vulnerability?
The vulnerability ID for this Lenovo Vantage component vulnerability is CVE-2020-8346.
What is the severity level of CVE-2020-8346?
The severity level of CVE-2020-8346 is medium (5.5).
What is the affected software for CVE-2020-8346?
The affected software for CVE-2020-8346 is Lenovo System Interface Foundation prior to version 1.1.19.5.
How does CVE-2020-8346 impact the system?
CVE-2020-8346 is a denial of service vulnerability that allows configuration files to be written to non-standard locations.
How can I fix CVE-2020-8346?
To fix CVE-2020-8346, update Lenovo System Interface Foundation to version 1.1.19.5 or higher.
- collector/nvd-index
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/author
- agent/last-modified-date
- agent/references
- agent/severity
- agent/remedy
- agent/tags
- agent/type
- agent/description
- agent/first-publish-date
- agent/event
- vendor/lenovo
- canonical/lenovo system interface foundation