Lucene search

[email protected]CVE-2022-34884

HistoryJan 30, 2023 - 10:15 p.m.

CVE-2022-34884

2023-01-3022:15:11

CWE-787

CWE-121

[email protected]

web.nvd.nist.gov

cve

buffer overflow

remote presence

dos

nvd

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

6.5 Medium

AI Score

Confidence

High

4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:N/I:N/A:P

0.001 Low

EPSS

Percentile

30.6%

JSON

A buffer overflow exists in the Remote Presence subsystem which can potentially allow valid, authenticated users to cause a recoverable subsystem denial of service.

CPENameOperatorVersion
lenovo:thinkagile_vx3331_firmwarelenovo thinkagile vx3331 firmwarelt1.80_afbt20n
lenovo:thinkagile_vx3331_firmwarelenovo thinkagile vx3331 firmwareeq-

CPE	Name	Operator	Version
lenovo:thinkagile_vx3331_firmware	lenovo thinkagile vx3331 firmware	lt	1.80_afbt20n
lenovo:thinkagile_vx3331_firmware	lenovo thinkagile vx3331 firmware	eq	-

References

support.lenovo.com/us/en/product_security/LEN-87734

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

6.5 Medium

AI Score

Confidence

High

4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:N/I:N/A:P

0.001 Low

EPSS

Percentile

30.6%

JSON

Related for CVE-2022-34884

prion1 ibm1