exploitDog

GHSA-9jxg-qpc2-3vh5

Опубликовано: 23 авг. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 6.7

Описание

A potential vulnerability was discovered in LCFC BIOS for some Lenovo consumer notebook models that could allow a local attacker with elevated privileges to cause some peripherals to work abnormally due to an exposed Embedded Controller (EC) interface.

A potential vulnerability was discovered in LCFC BIOS for some Lenovo consumer notebook models that could allow a local attacker with elevated privileges to cause some peripherals to work abnormally due to an exposed Embedded Controller (EC) interface.

Ссылки

EPSS

Процентиль: 6%

0.00025

Низкий

6.7 Medium

CVSS3

CVE ID

Дефекты

CWE-284

Связанные уязвимости

CVE-2022-3746

CVSS3: 6.7

nvd

больше 2 лет назад

A potential vulnerability was discovered in LCFC BIOS for some Lenovo consumer notebook models that could allow a local attacker with elevated privileges to cause some peripherals to work abnormally due to an exposed Embedded Controller (EC) interface.

EPSS

Процентиль: 6%

0.00025

Низкий

6.7 Medium

CVSS3

CVE ID

Дефекты

CWE-284