CVE-2020-8352
First published: Wed Nov 11 2020(Updated: )
In some Lenovo Desktop models, the Configuration Change Detection BIOS setting failed to detect SATA configuration changes.
Credit: psirt@lenovo.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Lenovo ThinkCentre E73 (TWR) Firmware | ||
| Lenovo ThinkCentre E73 Firmware | ||
| Lenovo ThinkCentre M73z Firmware | ||
| Lenovo ThinkCentre M73 Firmware | ||
| Lenovo Qitian 4500 Desktop firmware | ||
| Lenovo Qitian 4500 Firmware | ||
| Lenovo Qitian B4550 Desktop Firmware | ||
| Lenovo Qitian B4550 Desktop | ||
| Lenovo Qitian M4550 Desktop Firmware | ||
| Lenovo M4550 | ||
| Lenovo ThinkCentre M4500K Desktop Firmware | ||
| Lenovo ThinkCentre M4500K Desktop | ||
| Lenovo ThinkCentre M4500 Firmware | ||
| Lenovo ThinkCentre M4500t Firmware | ||
| Lenovo ThinkCentre M4500s Desktop Firmware | ||
| Lenovo ThinkCentre M4500t/s | ||
| Lenovo Yangtian AFH81 Desktop Firmware | ||
| Lenovo Yangtian afh81 Desktop | ||
| Lenovo Yangtian MC H81 Desktop Firmware | ||
| Lenovo Yangtian MC H81 Desktop Firmware | ||
| Lenovo Yangtian MF Firmware | ||
| Lenovo Yangtian MF Firmware | ||
| Lenovo Yangtian WF H81 PCI Desktop Firmware | ||
| Lenovo Yangtian WF H81 PCI Firmware | ||
| Lenovo Yangtian MS H81 Firmware | ||
| Lenovo Yangtian MS Firmware | ||
| Lenovo Yangtian WS H81 Firmware | ||
| Lenovo Yangtian WS H81 Firmware | ||
| Lenovo Yangtian TC Firmware | ||
| Lenovo Yangtian TC H81 PCI | ||
| Lenovo Yangtian WCC H81 PCI | ||
| Lenovo Yangtian WCC H81 PCI Firmware |
Remedy
Update system firmware to the version (or newer) indicated for your model in the Product Impact section of LEN-49266.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2020-8352?
CVE-2020-8352 is a vulnerability in some Lenovo Desktop models where the Configuration Change Detection BIOS setting fails to detect SATA configuration changes.
Which Lenovo Desktop models are affected by CVE-2020-8352?
Lenovo Thinkcentre E73 Firmware, Lenovo Thinkcentre M73 Firmware, Lenovo Qitian 4500 Firmware, Lenovo Qitian B4550 Firmware, Lenovo Qitian M4550 Firmware, Lenovo Thinkcentre M4500k Firmware, Lenovo Thinkcentre M4500t Firmware, Lenovo Thinkcentre M4500s Firmware, Lenovo Yangtian Afh81 Firmware, Lenovo Yangtian Mc H81 Firmware, Lenovo Yangtian Mf Firmware, Lenovo Yangtian Wf H81 Pci Firmware, Lenovo Yangtian Ms Firmware, Lenovo Yangtian Ws H81 Firmware, Lenovo Yangtian Tc Firmware, Lenovo Yangtian Wcc H81 Pci Firmware.
What is the severity of CVE-2020-8352?
CVE-2020-8352 has a severity score of 2.4, which is considered low.
How can I fix CVE-2020-8352 on my Lenovo Desktop?
To fix CVE-2020-8352, you should check for and install any available BIOS firmware updates provided by Lenovo.
Where can I find more information about CVE-2020-8352?
You can find more information about CVE-2020-8352 on the Lenovo Product Security website.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/author
- agent/last-modified-date
- agent/references
- agent/severity
- agent/remedy
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/lenovo
- canonical/lenovo thinkcentre e73 (twr) firmware
- canonical/lenovo thinkcentre e73 firmware
- canonical/lenovo thinkcentre m73z firmware
- canonical/lenovo thinkcentre m73 firmware
- canonical/lenovo qitian 4500 desktop firmware
- canonical/lenovo qitian 4500 firmware
- canonical/lenovo qitian b4550 desktop firmware
- canonical/lenovo qitian b4550 desktop
- canonical/lenovo qitian m4550 desktop firmware
- canonical/lenovo m4550
- canonical/lenovo thinkcentre m4500k desktop firmware
- canonical/lenovo thinkcentre m4500k desktop
- canonical/lenovo thinkcentre m4500 firmware
- canonical/lenovo thinkcentre m4500t firmware
- canonical/lenovo thinkcentre m4500s desktop firmware
- canonical/lenovo thinkcentre m4500t/s
- canonical/lenovo yangtian afh81 desktop firmware
- canonical/lenovo yangtian afh81 desktop
- canonical/lenovo yangtian mc h81 desktop firmware
- canonical/lenovo yangtian mf firmware
- canonical/lenovo yangtian wf h81 pci desktop firmware
- canonical/lenovo yangtian wf h81 pci firmware
- canonical/lenovo yangtian ms h81 firmware
- canonical/lenovo yangtian ms firmware
- canonical/lenovo yangtian ws h81 firmware
- canonical/lenovo yangtian tc firmware
- canonical/lenovo yangtian tc h81 pci
- canonical/lenovo yangtian wcc h81 pci
- canonical/lenovo yangtian wcc h81 pci firmware