Описание
MITRE is populating this ID because it was assigned prior to Lenovo becoming a CNA. A race condition was reported (fixed and publicly disclosed in 2015) in Lenovo System Update version 5.07.0008 and prior that could allow a user to execute arbitrary code with elevated privileges.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 5.07.0008 (включая)
cpe:2.3:a:lenovo:system_update:*:*:*:*:*:*:*:*
EPSS
Процентиль: 11%
0.00038
Низкий
7 High
CVSS3
6.9 Medium
CVSS2
Дефекты
CWE-362
Связанные уязвимости
github
больше 3 лет назад
MITRE is populating this ID because it was assigned prior to Lenovo becoming a CNA. A race condition was reported (fixed and publicly disclosed in 2015) in Lenovo System Update version 5.07.0008 and prior that could allow a user to execute arbitrary code with elevated privileges.
EPSS
Процентиль: 11%
0.00038
Низкий
7 High
CVSS3
6.9 Medium
CVSS2
Дефекты
CWE-362