VYPR

System Interface Foundation

by Lenovo

CVEs (6)

  • CVE-2016-8223HigNov 29, 2016
    risk 0.51cvss 7.8epss 0.00

    During an internal security review, Lenovo identified a local privilege escalation vulnerability in Lenovo System Interface Foundation software installed on some Windows 10 PCs where a user with local privileges could run arbitrary code with administrator level privileges.

  • CVE-2020-8346Sep 15, 2020
    risk 0.00cvss epss 0.00

    A denial of service vulnerability was reported in the Lenovo Vantage component called Lenovo System Interface Foundation prior to version 1.1.19.5 that could allow configuration files to be written to non-standard locations.

  • CVE-2020-8319Apr 14, 2020
    risk 0.00cvss epss 0.00

    A privilege escalation vulnerability was reported in Lenovo System Interface Foundation prior to version 1.1.19.3 that could allow an authenticated user to execute code with elevated privileges.

  • CVE-2020-8318Apr 14, 2020
    risk 0.00cvss epss 0.00

    A privilege escalation vulnerability was reported in the LenovoSystemUpdatePlugin for Lenovo System Interface Foundation prior to version that could allow an authenticated user to execute code with elevated privileges.

  • CVE-2019-6189Nov 20, 2019
    risk 0.00cvss epss 0.00

    A potential vulnerability was reported in Lenovo System Interface Foundation versions before v1.1.18.3 that could allow an administrative user to load an unsigned DLL.

  • CVE-2019-6186Nov 20, 2019
    risk 0.00cvss epss 0.01

    A potential vulnerability was reported in Lenovo System Interface Foundation versions before v1.1.18.3 that could allow an authenticated user to execute code as another user.