exploitDog

CVE-2023-5075

Опубликовано: 08 нояб. 2023

Источник: nvd

CVSS3: 6.7

EPSS Низкий

Описание

A buffer overflow was reported in the FmpSipoCapsuleDriver driver in the IdeaPad Duet 3-10IGL5 that may allow a local attacker with elevated privileges to execute arbitrary code.

Ссылки

https://support.lenovo.com/us/en/product_security/LEN-141775
Vendor Advisory
https://support.lenovo.com/us/en/product_security/LEN-141775
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:lenovo:ideapad_duet_3_10igl5_firmware:*:*:*:*:*:*:*:*

Версия до eqcn39ww (исключая)

cpe:2.3:h:lenovo:ideapad_duet_3_10igl5:-:*:*:*:*:*:*:*

EPSS

Процентиль: 11%

0.00037

Низкий

6.7 Medium

CVSS3

Дефекты

CWE-120

Связанные уязвимости

GHSA-2pxc-8fhw-2cw4

CVSS3: 6.7

github

около 2 лет назад

A buffer overflow was reported in the FmpSipoCapsuleDriver driver in the IdeaPad Duet 3-10IGL5 that may allow a local attacker with elevated privileges to execute arbitrary code.

EPSS

Процентиль: 11%

0.00037

Низкий

6.7 Medium

CVSS3

Дефекты

CWE-120