CVE-2016-8223

Published: Nov 29, 2016

Modified: Aug 6, 2024

PUBLISHED

Description

During an internal security review, Lenovo identified a local privilege escalation vulnerability in Lenovo System Interface Foundation software installed on some Windows 10 PCs where a user with local privileges could run arbitrary code with administrator level privileges.

Vendor	Product	Versions
Lenovo Group Ltd.	All ThinkPad, ThinkCentre, ThinkStation and Lenovo-branded systems preloaded with the Windows 10 operating system, or any system running Lenovo Companion, Lenovo Settings, or Lenovo ID.	affected `1.0.66.0 and earlier`

References

https://support.lenovo.com/us/en/solutions/LEN_10150

x_refsource_CONFIRM

94597

vdb-entry

x_refsource_BID

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2016-8223

Description

Affected Products

References