Vulnerabilities > Lenovo > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-04-14 | CVE-2020-8327 | Improper Privilege Management vulnerability in Lenovo Vantage 10.2001.12.0/4.0.49.0 A privilege escalation vulnerability was reported in LenovoBatteryGaugePackage for Lenovo System Interface Foundation bundled in Lenovo Vantage prior to version 10.2003.10.0 that could allow an authenticated user to execute code with elevated privileges. | 7.8 |
| 2020-04-14 | CVE-2020-8319 | Unspecified vulnerability in Lenovo System Interface Foundation 1.0.66.0/1.1.18.3 A privilege escalation vulnerability was reported in Lenovo System Interface Foundation prior to version 1.1.19.3 that could allow an authenticated user to execute code with elevated privileges. | 7.8 |
| 2020-04-14 | CVE-2020-8318 | Unspecified vulnerability in Lenovo System Interface Foundation A privilege escalation vulnerability was reported in the LenovoSystemUpdatePlugin for Lenovo System Interface Foundation prior to version that could allow an authenticated user to execute code with elevated privileges. | 7.8 |
| 2020-03-27 | CVE-2015-8536 | Cross-Site Request Forgery (CSRF) vulnerability in Lenovo Solution Center 3.3.0001 MITRE is populating this ID because it was assigned prior to Lenovo becoming a CNA. | 8.8 |
| 2020-03-27 | CVE-2015-8535 | Path Traversal vulnerability in Lenovo Solution Center 3.3.0001 MITRE is populating this ID because it was assigned prior to Lenovo becoming a CNA. | 7.8 |
| 2020-03-27 | CVE-2015-8534 | Improper Privilege Management vulnerability in Lenovo Solution Center 3.3.0001 MITRE is populating this ID because it was assigned prior to Lenovo becoming a CNA. | 7.8 |
| 2020-03-27 | CVE-2015-7336 | Improper Verification of Cryptographic Signature vulnerability in Lenovo System Update MITRE is populating this ID because it was assigned prior to Lenovo becoming a CNA. | 7.5 |
| 2020-03-27 | CVE-2015-7335 | Race Condition vulnerability in Lenovo System Update MITRE is populating this ID because it was assigned prior to Lenovo becoming a CNA. | 7.0 |
| 2020-03-27 | CVE-2015-7334 | Improper Privilege Management vulnerability in Lenovo System Update MITRE is populating this ID because it was assigned prior to Lenovo becoming a CNA. | 7.8 |
| 2020-03-27 | CVE-2015-7333 | Improper Privilege Management vulnerability in Lenovo System Update MITRE is populating this ID because it was assigned prior to Lenovo becoming a CNA. | 7.8 |