Lucene search

[email protected]NVD:CVE-2023-5081

HistoryJan 19, 2024 - 8:15 p.m.

CVE-2023-5081

2024-01-1920:15:12

CWE-497

[email protected]

web.nvd.nist.gov

lenovo tab m8

information disclosure

cve-2023-5081

non-resettable device identifier

CVSS3

3.3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

AI Score

3.5

Confidence

High

EPSS

Percentile

9.0%

JSON

An information disclosure vulnerability was reported in the Lenovo Tab M8 HD that could allow a local application to gather a non-resettable device identifier.

Affected configurations

Nvd

Node

lenovotab_m8_hd_tb8505f_firmwareRange<8505f_usr_s301106_2309140042_v9.56_bmp_row

AND

lenovotab_m8_hd_tb8505fMatch-

Node

lenovotab_m8_hd_tb8505fs_firmwareRange<8505fs_usr_s301107_2309140028_v9.56_bmp_row

AND

lenovotab_m8_hd_tb8505fsMatch-

Node

lenovotab_m8_hd_tb8505x_firmwareRange<8505x_usr_s301129_2309141226_v9.56_bmp_row

AND

lenovotab_m8_hd_tb8505xMatch-

Node

lenovotab_m8_hd_tb8505xs_firmwareRange<8505xs_usr_s301077_2309140036_v9.56_bmp_row

AND

lenovotab_m8_hd_tb8505xsMatch-

VendorProductVersionCPE
lenovotab_m8_hd_tb8505f_firmware*cpe:2.3:o:lenovo:tab_m8_hd_tb8505f_firmware:*:*:*:*:*:*:*:*
lenovotab_m8_hd_tb8505f-cpe:2.3:h:lenovo:tab_m8_hd_tb8505f:-:*:*:*:*:*:*:*
lenovotab_m8_hd_tb8505fs_firmware*cpe:2.3:o:lenovo:tab_m8_hd_tb8505fs_firmware:*:*:*:*:*:*:*:*
lenovotab_m8_hd_tb8505fs-cpe:2.3:h:lenovo:tab_m8_hd_tb8505fs:-:*:*:*:*:*:*:*
lenovotab_m8_hd_tb8505x_firmware*cpe:2.3:o:lenovo:tab_m8_hd_tb8505x_firmware:*:*:*:*:*:*:*:*
lenovotab_m8_hd_tb8505x-cpe:2.3:h:lenovo:tab_m8_hd_tb8505x:-:*:*:*:*:*:*:*
lenovotab_m8_hd_tb8505xs_firmware*cpe:2.3:o:lenovo:tab_m8_hd_tb8505xs_firmware:*:*:*:*:*:*:*:*
lenovotab_m8_hd_tb8505xs-cpe:2.3:h:lenovo:tab_m8_hd_tb8505xs:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
lenovo	tab_m8_hd_tb8505f_firmware	*	cpe:2.3:o:lenovo:tab_m8_hd_tb8505f_firmware::::::::
lenovo	tab_m8_hd_tb8505f	-	cpe:2.3:h:lenovo:tab_m8_hd_tb8505f:-:::::::*
lenovo	tab_m8_hd_tb8505fs_firmware	*	cpe:2.3:o:lenovo:tab_m8_hd_tb8505fs_firmware::::::::
lenovo	tab_m8_hd_tb8505fs	-	cpe:2.3:h:lenovo:tab_m8_hd_tb8505fs:-:::::::*
lenovo	tab_m8_hd_tb8505x_firmware	*	cpe:2.3:o:lenovo:tab_m8_hd_tb8505x_firmware::::::::
lenovo	tab_m8_hd_tb8505x	-	cpe:2.3:h:lenovo:tab_m8_hd_tb8505x:-:::::::*
lenovo	tab_m8_hd_tb8505xs_firmware	*	cpe:2.3:o:lenovo:tab_m8_hd_tb8505xs_firmware::::::::
lenovo	tab_m8_hd_tb8505xs	-	cpe:2.3:h:lenovo:tab_m8_hd_tb8505xs:-:::::::*

References

support.lenovo.com/us/en/product_security/LEN-142135

CVSS3

3.3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

AI Score

3.5

Confidence

High

EPSS

Percentile

9.0%

JSON

Related for NVD:CVE-2023-5081

cvelist1 prion1 cve1