Lenovo Desktop and Workstation Systems Vulnerable to Unauthorized Intel AMT Configuration

Lenovo Desktop and Workstation Systems Vulnerable to Unauthorized Intel AMT Configuration

CVE-2020-8353 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Prior to August 10, 2020, some Lenovo Desktop and Workstation systems were shipped with the Embedded Host Based Configuration (EHBC) feature of Intel AMT enabled. This could allow an administrative user with local access to configure Intel AMT.

Learn more about our Cis Benchmark Audit For Desktop Software.