Lucene search

LenovoCVELIST:CVE-2022-1513

HistoryAug 23, 2022 - 5:25 p.m.

CVE-2022-1513

2022-08-2317:25:10

CWE-78

lenovo

www.cve.org

lenovo pcmanager

code execution

vulnerability

websitecrafted

7.3 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

9 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

66.1%

JSON

A potential vulnerability was reported in Lenovo PCManager prior to version 5.0.10.4191 that may allow code execution when visiting a specially crafted website.

CNA Affected

[
  {
    "product": "PCManager",
    "vendor": "Lenovo",
    "versions": [
      {
        "lessThan": "5.0.10.4191",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

References

iknow.lenovo.com.cn/detail/dc_203545.html

7.3 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

9 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

66.1%

JSON

Related for CVELIST:CVE-2022-1513