Vulnerabilities > Lenovo > System Interface Foundation > Medium

DATE CVE VULNERABILITY TITLE RISK
2020-09-15 CVE-2020-8346 Incorrect Default Permissions vulnerability in Lenovo System Interface Foundation 1.0.66.0/1.1.18.3/1.1.19.3
A denial of service vulnerability was reported in the Lenovo Vantage component called Lenovo System Interface Foundation prior to version 1.1.19.5 that could allow configuration files to be written to non-standard locations.
local
low complexity
lenovo CWE-276
5.5
2020-04-14 CVE-2020-8324 Improper Input Validation vulnerability in Lenovo System Interface Foundation
A vulnerability was reported in LenovoAppScenarioPluginSystem for Lenovo System Interface Foundation prior to version 1.2.184.31 that could allow unsigned DLL files to be executed.
local
low complexity
lenovo CWE-20
5.5