A privilege escalation vulnerability in Lenovo Power Management Driver for Windows 10, prior to version 1.67.17.54, that could allow unauthorized access to the driver's device object.
Attack Vector Local
Attack Complexity Low
Privileges Required Low
Scope Unchanged
Confidentiality Impact High
Integrity Impact High
Availability Impact High
User Interaction None
No CVSS v3.0
Access Vector Local
Access Complexity Low
Authentication None
Confidentiality Impact Partial
Integrity Impact Partial
Availability Impact Partial
AV:L/AC:L/Au:N/C:P/I:P/A:P
Vendors | Products |
---|---|
Lenovo |
|
Configuration 1 [-]
AND |
|
References
Link | Resource |
---|---|
https://support.lenovo.com/us/en/product_security/LEN-59174 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: lenovo
Published: 2021-04-13T20:41:44
Updated: 2021-04-13T20:41:44
Reserved: 2021-03-23T00:00:00
Link: CVE-2021-3462
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-04-13T21:15:25.193
Modified: 2022-10-27T12:45:23.963
Link: CVE-2021-3462
JSON object: View
Redhat Information
No data.