PT-2023-13517 · Lenovo · Lenovo Vantage
Published
2023-10-27
·
Updated
2023-11-07
·
CVE-2022-3701
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Lenovo Vantage SystemUpdate plugin versions 2.0.0.212 and earlier
Description
A privilege elevation issue was reported that could allow a local attacker to execute arbitrary code with elevated privileges.
Recommendations
For versions 2.0.0.212 and earlier, update to a version later than 2.0.0.212 to resolve the issue.
Fix
Time Of Check To Time Of Use
Improper Privilege Management
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Lenovo Vantage