Описание
MITRE is populating this ID because it was assigned prior to Lenovo becoming a CNA. A directory traversal vulnerability was discovered (fixed and publicly disclosed in 2015) in Lenovo Solution Center (LSC) prior to version 3.3.002 that could allow a user to execute arbitrary code with elevated privileges.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 3.3.002 (исключая)
cpe:2.3:a:lenovo:solution_center:*:*:*:*:*:*:*:*
EPSS
Процентиль: 21%
0.00068
Низкий
7.8 High
CVSS3
7.2 High
CVSS2
Дефекты
CWE-22
Связанные уязвимости
github
больше 3 лет назад
MITRE is populating this ID because it was assigned prior to Lenovo becoming a CNA. A directory traversal vulnerability was discovered (fixed and publicly disclosed in 2015) in Lenovo Solution Center (LSC) prior to version 3.3.002 that could allow a user to execute arbitrary code with elevated privileges.
EPSS
Процентиль: 21%
0.00068
Низкий
7.8 High
CVSS3
7.2 High
CVSS2
Дефекты
CWE-22