PT-2021-21232 · Lenovo · Lenovo Drivers Management

Published

2021-08-17

·

Updated

2022-04-25

·

CVE-2021-3633

CVSS v3.1

7.8

High

VectorAV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Lenovo Driver Management versions prior to 2.9.0719.1104
Description A DLL preloading issue allows privilege escalation.
Recommendations For versions prior to 2.9.0719.1104, update to version 2.9.0719.1104 or later to resolve the issue.

Exploit

Fix

Improper Verification of Cryptographic Signature

Uncontrolled Search Path Element

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-347CWE-427

Related Identifiers

CVE-2021-3633

Affected Products

Lenovo Drivers Management