PT-2023-22973 · Lenovo · Lenovo Universal Device Client

Publicado

2023-08-17

Atualizado

2023-08-25

CVE-2023-3078

CVSS v3.1

7.8

Alta

Vetor

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Lenovo Universal Device Client (UDC) (affected versions not specified)

Description An uncontrolled search path vulnerability was reported in the Lenovo Universal Device Client (UDC) that could allow an attacker with local access to execute code with elevated privileges.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Uncontrolled Search Path Element

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-427

Identificadores relacionados

CVE-2023-3078

Produtos afetados

Lenovo Universal Device Client

PT-2023-22973 · Lenovo · Lenovo Universal Device Client

CVE-2023-3078

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 7