CVE-2023-4632
published 2023-11-08CVE-2023-4632: An uncontrolled search path vulnerability was reported in Lenovo System Update that could allow an attacker with local access to execute code with elevated…
high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
An uncontrolled search path vulnerability was reported in Lenovo System Update that could allow an attacker with local access to execute code with elevated privileges.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| lenovo | lenovo_system_update | — | — |
| lenovo | system_update | < 5.08.02.25 | 5.08.02.25 |
| linux | linux_kernel | >= 3.3.0 < 6.1.42 | 6.1.42 |
| linux | linux_kernel | >= 6.2.0 < 6.4.7 | 6.4.7 |