admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-28 09:11:28 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2024/CVE-2024-54xx/CVE-2024-5474.json
cad-safe-bot 5ab0c2e030 Auto-Update: 2024-10-15T14:00:18.621893+00:00
2024-10-15 14:03:18 +00:00

60 lines
2.1 KiB
JSON
Raw Blame History

{
"id": "CVE-2024-5474",
"sourceIdentifier": "psirt@lenovo.com",
"published": "2024-10-11T16:15:14.440",
"lastModified": "2024-10-15T12:58:51.050",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "A potential information disclosure vulnerability was reported in Lenovo's packaging of Dolby Vision Provisioning software prior to version 2.0.0.2 that could allow a local attacker to read files on the system with elevated privileges during installation of the package. Previously installed versions are not affected by this issue."
},
{
"lang": "es",
"value": "Se inform\u00f3 de una posible vulnerabilidad de divulgaci\u00f3n de informaci\u00f3n en el paquete de software Dolby Vision Provisioning de Lenovo anterior a la versi\u00f3n 2.0.0.2 que podr\u00eda permitir que un atacante local lea archivos en el sistema con privilegios elevados durante la instalaci\u00f3n del paquete. Las versiones instaladas anteriormente no se ven afectadas por este problema."
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "psirt@lenovo.com",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 1.8,
"impactScore": 3.6
}
]
},
"weaknesses": [
{
"source": "psirt@lenovo.com",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-276"
}
]
}
],
"references": [
{
"url": "https://support.lenovo.com/us/en/product_security/LEN-158394",
"source": "psirt@lenovo.com"
}
]
}
Reference in New Issue View Git Blame Copy Permalink