Lucene search
LenovoCVELIST:CVE-2023-5078HistoryNov 08, 2023 - 10:02 p.m.
CVE-2023-5078
2023-11-0822:02:49
CWE-1419
lenovo
www.cve.org
3
vulnerability
thinkpad
bios
tampering
elevated privileges
CVSS3
6.7
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
AI Score
6.4
Confidence
High
EPSS
0
Percentile
5.1%
A vulnerability was reported in some ThinkPad BIOS that could allow a physical or local attacker with elevated privileges to tamper with BIOS firmware.
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "ThinkPad BIOS",
"vendor": "Lenovo",
"versions": [
{
"status": "affected",
"version": "various"
}
]
}
]Related
prion
prion
Security feature bypass
2023-11-08 22:15:00
cve
cve
CVE-2023-5078
2023-11-08 22:15:11
nvd
nvd
CVE-2023-5078
2023-11-08 22:15:11
vulnrichment
vulnrichment
CVE-2023-5078
2023-11-08 22:02:49
CVSS3
6.7
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
AI Score
6.4
Confidence
High
EPSS
0
Percentile
5.1%
Related for CVELIST:CVE-2023-5078