CVE-2024-33579 β€” Uncontrolled Search Path Element in Lenovo Baiying

CWE-427 β€” Uncontrolled Search Path Element3 documents3 sources
Severity
7.8HIGHNVD
EPSS
0.0%
top 93.51%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Lenovo Baiying
Timeline
PublishedOct 11

Description

A DLL hijack vulnerability was reported in Lenovo Baiying that could allow a local attacker to execute code with elevated privileges.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages1 packages

β–ΆCVEListV5lenovo/baiying< 2.0

πŸ”΄Vulnerability Details

2
CVEList
CVE-2024-33579: A DLL hijack vulnerability was reported in Lenovo Baiying that could allow a local attacker to execute code with elevated privileges↗2024-10-11
β–Ά
GHSA
GHSA-3qgp-r42g-2mwq: A DLL hijack vulnerability was reported in Lenovo Baiying that could allow a local attacker to execute code with elevated privileges↗2024-10-11
β–Ά
CVE-2024-33579 β€” Uncontrolled Search Path Element | cvebase