PT-2023-28860 · Lenovo · Biosextensionloader

Publicado

2023-11-08

Atualizado

2023-11-15

CVE-2023-43572

CVSS v3.1

4.4

Média

Vetor

AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Lenovo Desktop products (affected versions not specified)

Description A buffer over-read was reported in the BiosExtensionLoader module that may allow a local attacker with elevated privileges to disclose sensitive information.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Out of bounds Read

Buffer Over-read

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-125CWE-126

Identificadores relacionados

CVE-2023-43572

Produtos afetados

Biosextensionloader

PT-2023-28860 · Lenovo · Biosextensionloader

CVE-2023-43572

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 5