CVE-2020-0529 β€” Improper Initialization in Lenovo Bios

CWE-665 β€” Improper Initialization3 documents3 sources
Severity
7.8HIGHNVD
EPSS
0.1%
top 78.14%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Lenovo Bios
Timeline
PublishedJun 15
Latest updateMay 24

Description

Improper initialization in BIOS firmware for 8th, 9th and 10th Generation Intel(R) Core(TM) Processor families may allow an unauthenticated user to potentially enable escalation of privilege via local access.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages1 packages

β–ΆCVEListV5lenovo/biosSee provided reference

πŸ”΄Vulnerability Details

2
GHSA
GHSA-fv3v-w9q8-66cp: Improper initialization in BIOS firmware for 8th, 9th and 10th Generation Intel(R) Core(TM) Processor families may allow an unauthenticated user to po↗2022-05-24
β–Ά
CVEList
CVE-2020-0529: Improper initialization in BIOS firmware for 8th, 9th and 10th Generation Intel(R) Core(TM) Processor families may allow an unauthenticated user to po↗2020-06-15
β–Ά
CVE-2020-0529 β€” Improper Initialization in Lenovo Bios | cvebase