Browse all 359 CVE security advisories affecting Lenovo. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Lenovo operates as a global technology manufacturer, primarily producing personal computers, servers, and mobile devices for enterprise and consumer markets. Its software ecosystem, including pre-installed utilities and firmware, has historically exhibited vulnerabilities such as remote code execution, cross-site scripting, and privilege escalation flaws within management interfaces. These weaknesses often stem from complex supply chain integrations and legacy codebases embedded in hardware. While the company maintains standard security protocols, past incidents have highlighted risks associated with third-party components and default configurations in diagnostic tools. The current record of 359 Common Vulnerabilities and Exposures reflects the broad attack surface inherent in its diverse hardware portfolio. Continuous patching and rigorous code audits remain critical for mitigating these persistent threats across its extensive product line.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2020-8357 | Lenovo Pcmanager 安全漏洞 — PCManagerCWE-276 | 5.5 | Medium | 2021-03-09 |
| CVE-2020-8355 | 联想 Lenovo XClarity Administrator 信息泄露漏洞 — XClarity AdministratorCWE-319 | 4.9 | Medium | 2021-02-10 |
| CVE-2020-8351 | Lenovo Pcmanager 配置错误漏洞 — PCManagerCWE-16 | 7.8 | High | 2020-11-30 |
| CVE-2020-8352 | Lenovo Desktop 安全特征问题漏洞 — BIOSCWE-358 | 2.4 | Low | 2020-11-11 |
| CVE-2020-8353 | Lenovo Desktop 配置错误漏洞 — Desktop and Workstation systemsCWE-16 | 6.7 | Medium | 2020-11-11 |
| CVE-2020-8354 | Lenovo 安全漏洞 — BIOSCWE-367 | 6.4 | Medium | 2020-11-11 |
| CVE-2020-8349 | CNOS 代码注入漏洞 — Cloud Networking Operating System (CNOS)CWE-20 | 9.8 | Critical | 2020-10-14 |
| CVE-2020-8350 | Lenovo ThinkPad Stack Wireless Router 授权问题漏洞 — ThinkPad Stack WIreless Router firmwareCWE-287 | 8.8 | High | 2020-10-14 |
| CVE-2020-8338 | Lenovo Diagnostics 代码问题漏洞 — DiagnosticsCWE-426 | 7.8 | High | 2020-10-14 |
| CVE-2020-8345 | Lenovo Vantage 代码问题漏洞 — Vantage HardwareScan PluginCWE-427 | 7.3 | High | 2020-10-14 |
| CVE-2020-8332 | IBM System x servers 安全漏洞 — System xCWE-367 | 6.4 | Medium | 2020-10-14 |
| CVE-2020-8348 | Lenovo Enterprise Network Disk 跨站脚本漏洞 — Enterprise Network DiskCWE-79 | 6.1 | Medium | 2020-09-24 |
| CVE-2020-8333 | 多款Lenovo Desktops和ThinkStation产品安全漏洞 — BIOS | 6.4 | Medium | 2020-09-24 |
| CVE-2020-8347 | Lenovo Enterprise Network Disk 跨站脚本漏洞 — Enterprise Network DiskCWE-79 | 6.1 | Medium | 2020-09-24 |
| CVE-2020-8340 | IBM BladeCenter 跨站脚本漏洞 — System x IMM2 firmware for: x240, Machine Types: 7162, 2588; x440, Machine Type 7167, 2590 ; x3750 M4, Machine Type: 8753 ; x3250 M6, Machine type 3633, 3943 ; nx360 M5, Machine type 5465, 5467 ; x280/x480/x880 X6 , Machine Type 7196, 4258 ; x3850 X6 and x3950 X6, Machine type 6241 ; x3550 M5, Machine Type 5463, 8869 ; x3650 M5, Machine Type 5462, 8871; x3500 M5, Machine Type 5464, 5478CWE-79 | 6.3 | Medium | 2020-09-15 |
| CVE-2020-8342 | Lenovo System Update 安全漏洞 — System UpdateCWE-367 | 7.3 | High | 2020-09-15 |
| CVE-2020-8346 | Lenovo System Interface Foundation和Lenovo Vantage 安全漏洞 — System Interface FoundationCWE-276 | 5.5 | Medium | 2020-09-15 |
| CVE-2020-8341 | Lenovo 安全漏洞 — ThinkPad | 2.1 | - | 2020-09-01 |
| CVE-2020-8335 | Lenovo ThinkPad 未授权访问漏洞 — ThinkPad A285 BIOS | 6.1 | Medium | 2020-09-01 |
| CVE-2020-8317 | Lenovo Drivers Management 代码问题漏洞 — Drivers ManagementCWE-426 | 7.3 | High | 2020-07-24 |
| CVE-2020-8326 | Lenovo Drivers Management 代码问题漏洞 — Drivers ManagementCWE-428 | 7.3 | High | 2020-07-24 |
| CVE-2020-8336 | 多款Lenovo ThinkPad产品安全漏洞 — BIOS | 6.4 | Medium | 2020-06-09 |
| CVE-2020-8337 | Synaptics Smart Audio UWP app 代码问题漏洞 — Synaptics Smart Audio UWP AppCWE-428 | 6.7 | - | 2020-06-09 |
| CVE-2020-8334 | 多款Lenovo产品安全漏洞 — BIOS | 6.1 | Medium | 2020-06-09 |
| CVE-2020-8322 | Lenovo Legacy USB 安全漏洞 — BIOS | 6.4 | Medium | 2020-06-09 |
| CVE-2020-8323 | Lenovo Legacy SD driver 安全漏洞 — BIOS | 6.4 | Medium | 2020-06-09 |
| CVE-2019-6196 | Lenovo安装包代码问题漏洞 — Installation PackagesCWE-426 | 6.7 | Medium | 2020-06-09 |
| CVE-2020-8320 | 多款Lenovo ThinkPad产品安全漏洞 — BIOSCWE-489 | 6.4 | Medium | 2020-06-09 |
| CVE-2020-8321 | Lenovo System Lock Preinstallation driver 安全漏洞 — BIOS | 6.4 | Medium | 2020-06-09 |
| CVE-2019-6173 | Lenovo安装包代码问题漏洞 — Installation PackagesCWE-426 | 6.7 | Medium | 2020-06-09 |
This page lists every published CVE security advisory associated with Lenovo. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.