Lucene search
LenovoCVE-2022-3702HistoryOct 27, 2023 - 8:15 p.m.
CVE-2022-3702
2023-10-2720:15:08
CWE-367
lenovo
web.nvd.nist.gov
21
cve-2022-3702
denial of service
vulnerability
lenovo vantage
hardwarescan plugin
local attacker
CVSS3
7.1
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
AI Score
6.7
Confidence
High
EPSS
0
Percentile
5.1%
A denial of service vulnerability was reported in Lenovo Vantage HardwareScan Plugin version 1.3.0.5 and earlier that could allow a local attacker to delete contents of an arbitrary directory under certain conditions.
Affected configurations
Node
lenovosystem_update_pluginRange<2.0.0.213lenovo_vantage
Node
lenovohardware_scan_pluginRange<1.3.1.2lenovo_vantage
Node
lenovohardware_scan_addinRange<2.4.1.1lenovo_vantage
| Vendor | Product | Version | CPE |
|---|---|---|---|
| lenovo | system_update_plugin | * | cpe:2.3:a:lenovo:system_update_plugin:*:*:*:*:*:lenovo_vantage:*:* |
| lenovo | hardware_scan_plugin | * | cpe:2.3:a:lenovo:hardware_scan_plugin:*:*:*:*:*:lenovo_vantage:*:* |
| lenovo | hardware_scan_addin | * | cpe:2.3:a:lenovo:hardware_scan_addin:*:*:*:*:*:lenovo_vantage:*:* |
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "Vantage HardwareScan Plugin",
"vendor": "Lenovo",
"versions": [
{
"lessThan": "1.3.1.2",
"status": "affected",
"version": " ",
"versionType": "custom"
}
]
}
]Related
vulnrichment
vulnrichment
CVE-2022-3702
2023-10-27 19:42:34
prion
prion
Design/Logic Flaw
2023-10-27 20:15:00
nvd
nvd
CVE-2022-3702
2023-10-27 20:15:08
cvelist
cvelist
CVE-2022-3702
2023-10-27 19:42:34
CVSS3
7.1
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
AI Score
6.7
Confidence
High
EPSS
0
Percentile
5.1%
Related for CVE-2022-3702