CVE-2022-3611

CWE-200Information Exposure3 documents3 sources
Severity
7.5HIGH
EPSS
0.1%
top 79.69%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Lenovo APP StoreLenovo APP Store APP
Timeline
PublishedOct 27

Description

An information disclosure vulnerability has been identified in the Lenovo App Store which may allow some applications to gain unauthorized access to sensitive user data used by other unrelated applications.

CVSS vector

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:LExploitability: 2.8 | Impact: 4.7

Affected Packages2 packages

CVEListV5lenovo/app_store 11.8.0
NVDlenovo/app_store_app< 11.8.0

🔴Vulnerability Details

2
CVEList
CVE-2022-3611: An information disclosure vulnerability has been identified in the Lenovo App Store which may allow some applications to gain unauthorized access to s2023-10-27
GHSA
GHSA-9m2m-543r-gv6g: An information disclosure vulnerability has been identified in the Lenovo App Store which may allow some applications to gain unauthorized access to s2023-10-27
CVE-2022-3611 (HIGH CVSS 7.5) | An information disclosure vulnerabi | cvebase.io