GHSA-pcf5-pv9f-hrqm

Опубликовано: 15 апр. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 6.7

Описание

A vulnerability was reported

in a system recovery bootloader that was part of the Lenovo preloaded Windows 7 and 8 operating systems from 2012 to 2014

that could allow a privileged attacker with local access to modify the boot manager and escalate privileges.

A vulnerability was reported

in a system recovery bootloader that was part of the Lenovo preloaded Windows 7 and 8 operating systems from 2012 to 2014

that could allow a privileged attacker with local access to modify the boot manager and escalate privileges.

Ссылки

EPSS

Процентиль: 13%

0.00043

Низкий

6.7 Medium

CVSS3

CVE ID

CVE-2024-23593

Дефекты

CWE-1284

Связанные уязвимости

CVE-2024-23593

CVSS3: 6.7

nvd

около 1 года назад

A vulnerability was reported in a system recovery bootloader that was part of the Lenovo preloaded Windows 7 and 8 operating systems from 2012 to 2014 that could allow a privileged attacker with local access to modify the boot manager and escalate privileges.

CVE-2024-23593

CVSS3: 6.7

msrc

около 1 года назад

Lenovo: CVE-2024-23593 Modify Boot Manager and Escalate Privileges

BDU:2024-03179

CVSS3: 6.7

fstec

около 1 года назад

Уязвимость загрузчика восстановления системы System Recovery Bootloader операционных систем Windows, позволяющая нарушителю обойти существующие ограничения безопасности и повысить свои привилегии

EPSS

Процентиль: 13%

0.00043

Низкий

6.7 Medium

CVSS3

CVE ID

CVE-2024-23593

Дефекты

CWE-1284