mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-05-28 09:12:00 +00:00
68 lines
2.2 KiB
JSON
68 lines
2.2 KiB
JSON
{
|
|
"CVE_data_meta": {
|
|
"ASSIGNER": "psirt@lenovo.com",
|
|
"DATE_PUBLIC": "2017-08-10T00:00:00",
|
|
"ID": "CVE-2017-3756",
|
|
"STATE": "PUBLIC"
|
|
},
|
|
"affects": {
|
|
"vendor": {
|
|
"vendor_data": [
|
|
{
|
|
"product": {
|
|
"product_data": [
|
|
{
|
|
"product_name": "ThinkPad Active Protection System",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_value": "Earlier than 1.82.0.17"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
},
|
|
"vendor_name": "Lenovo Group Ltd."
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"data_format": "MITRE",
|
|
"data_type": "CVE",
|
|
"data_version": "4.0",
|
|
"description": {
|
|
"description_data": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "A privilege escalation vulnerability was identified in Lenovo Active Protection System for ThinkPad systems versions earlier than 1.82.0.17. An attacker with local privileges could execute code with administrative privileges via an unquoted service path."
|
|
}
|
|
]
|
|
},
|
|
"problemtype": {
|
|
"problemtype_data": [
|
|
{
|
|
"description": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "Privilege Escalation"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"references": {
|
|
"reference_data": [
|
|
{
|
|
"name": "100305",
|
|
"refsource": "BID",
|
|
"url": "http://www.securityfocus.com/bid/100305"
|
|
},
|
|
{
|
|
"name": "https://support.lenovo.com/us/en/product_security/LEN-15765",
|
|
"refsource": "CONFIRM",
|
|
"url": "https://support.lenovo.com/us/en/product_security/LEN-15765"
|
|
}
|
|
]
|
|
}
|
|
} |