PT-2024-25351 · Lenovo · Lenovo Service Framework
Ggid7788
·
Published
2024-10-11
·
Updated
2024-10-16
·
CVE-2024-33582
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Lenovo Service Framework (affected versions not specified)
Description
A DLL hijack vulnerability was reported in Lenovo Service Framework that could allow a local attacker to execute code with elevated privileges. The vulnerability affects Lenovo devices and poses significant risks. Users are urged to update their systems to the latest versions to mitigate risks.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Uncontrolled Search Path Element
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Lenovo Service Framework