PT-2023-13538 · Lenovo · Lcfc Bios

Publicado

2023-08-23

Atualizado

2023-08-29

CVE-2022-3743

CVSS v3.1

4.4

Média

Vetor

AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Lenovo LCFC BIOS (affected versions not specified)

Description A potential issue was discovered in LCFC BIOS for some Lenovo consumer notebook models. This could allow a local attacker with elevated privileges, under certain conditions, the ability to enumerate Embedded Controller (EC) commands.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Information Disclosure

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-200

Identificadores relacionados

CVE-2022-3743

Produtos afetados

Lcfc Bios

PT-2023-13538 · Lenovo · Lcfc Bios

CVE-2022-3743

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 5