Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.8
CVSSv3

CVE-2022-3699

Published: 25/10/2023 Updated: 30/10/2023
CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8
VMScore: 0
Subscribe to Lenovo

Vulnerability Summary

A privilege escalation vulnerability was reported in the Lenovo HardwareScanPlugin prior to version 1.3.1.2 and Lenovo Diagnostics prior to version 4.45 that could allow a local user to execute code with elevated privileges.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

lenovo diagnostics

lenovo hardwarescan addin

lenovo hardwarescan plugin

Exploits

Exploit DB: Lenovo Diagnostics Driver Memory Access
This Metasploit module demonstrates how an incorrect access control for the Lenovo Diagnostics Driver allows a low-privileged user the ability to issue device IOCTLs to perform arbitrary physical/virtual memory reads and writes ...

Github Repositories

https://github.com/alfarom256/CVE-2022-3699

Lenovo Diagnostics Driver EoP - Arbitrary R/W

CVE-2022-3699 Incorrect access control for the Lenovo Diagnostics Driver allows a low-privileged user the ability to issue device IOCTLs to perform arbitrary physical/virtual memory read/write Thank you to ch3rn0byl for helping with this (and I totally 100% ripped two of his functions) Explanation IOCTL 0x222000: rdmsr IOCTL 0x222008/0x22200C: HalGet/SetBusData IOCTL 0x22

https://github.com/Marc-andreLabonte/AnalyseDynamiqueModulesKernel

Atelier Analyse dynamique de modules de kernel Windows NSEC 2023

Analyse dynamique de modules de kernel Windows Objectifs Démocratiser l'utilisation du débogueur fourni par Microsoft, Windbg Le logiciel peut paraitre intimidant à première vue mais après avoir appris quelques commandes et en le combinant avec Ghidra, on arrive à y voir plus clair Expérimenter en développant n

https://github.com/estimated1337/lenovo_exec

CVE-2022-3699 with arbitrary kernel code execution capability

lenovo_exec CVE-2022-3699 with arbitrary kernel code execution capability original exploit: githubcom/alfarom256/CVE-2022-3699

https://github.com/passion1337/byovd-exploit

Vulnerable Driver Exploit

Vulnerable Driver Exploit Introduction Windows vista 이후로 Driver Signature Enforcement(DSE)가 도입되었다 DSE는 커널 드라이버롤 로드 하기 전에 디지털 서명을 검증하도록 강제한다 그렇기에 해커들은 서명되었지만 취약점이 존재하는 드라이버 찾아서 악용한다 어떠한 드라이버가 취약한지, 이를 어떻

References

CWE-787https://support.lenovo.com/us/en/product_security/LEN-102365https://support.lenovo.com/us/en/product_security/LEN-94532https://nvd.nist.govhttps://packetstormsecurity.com/files/170849/Lenovo-Diagnostics-Driver-Memory-Access.htmlhttps://github.com/alfarom256/CVE-2022-3699
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27977IMAPlocal usersCVE-2024-32038CVE-2023-49963CVE-2023-22869CVE-2024-31497localCVE-2024-2961
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook