CVEs-PoC/2020/CVE-2020-8335.md

### [CVE-2020-8335](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8335)
![](https://img.shields.io/static/v1?label=Product&message=ThinkPad%20A285%20BIOS&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=ThinkPad%20A485%20BIOS&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=ThinkPad%20T495%20BIOS&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=ThinkPad%20T495s%2FX395%20BIOS&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=%3C%20r0wuj65w%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Version&message=%3C%20r0xuj70w%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Version&message=%3C%20r12uj55w%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Version&message=%3C%20r13uj47w%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=unauthorized%20access&color=brighgreen)

### Description

The BIOS tamper detection mechanism was not triggered in Lenovo ThinkPad A285, BIOS versions up to r0xuj70w; A485, BIOS versions up to r0wuj65w; T495 BIOS versions up to r12uj55w; T495s/X395, BIOS versions up to r13uj47w, while the emergency-reset button is pressed which may allow for unauthorized access.

### POC

#### Reference
No PoCs from references.

#### Github
- https://github.com/404notf0und/CVE-Flow