Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 17/08/2023 Updated: 24/08/2023

CVSS v3 Base Score: 6.7 | Impact Score: 5.9 | Exploitability Score: 0.8

VMScore: 0

A buffer overflow has been identified in the SystemUserMasterHddPwdDxe driver in some Lenovo Notebook products which may allow an attacker with local access and elevated privileges to execute arbitrary code.

Vulnerable Product	Search on Vulmon	Subscribe to Product
lenovo 13w_yoga_firmware
lenovo 13w_yoga_gen_2_firmware
lenovo ideapad_1-11ada05_firmware
lenovo ideapad_1-11igl05_firmware
lenovo ideapad_1-14ada05_firmware
lenovo ideapad_1-14igl05_firmware
lenovo flex_5-14alc05_firmware
lenovo flex_5-14are05_firmware
lenovo flex_5-14iil05_firmware
lenovo flex_5-14itl05_firmware
lenovo flex_5-15alc05_firmware
lenovo flex_5-15iil05_firmware
lenovo flex_5-15itl05_firmware
lenovo ideapad_flex_5_14abr8_firmware
lenovo ideapad_flex_5_14alc7_firmware
lenovo ideapad_flex_5_14iau7_firmware
lenovo ideapad_flex_5_14iru8_firmware
lenovo ideapad_flex_5_16abr8_firmware
lenovo ideapad_flex_5_16alc7_firmware
lenovo ideapad_flex_5_16iau7_firmware
lenovo ideapad_flex_5_16iru8_firmware
lenovo flex_7_14iru8_firmware
lenovo thinkbook_13s_g2_are_firmware
lenovo thinkbook_13s_g2_itl_firmware
lenovo thinkbook_13s_g3_acn_firmware
lenovo thinkbook_13s_g4_iap_firmware
lenovo thinkbook_13x_g2_iap_firmware
lenovo thinkbook_14s_g2_itl_firmware
lenovo yoga_9-15imh5_firmware

CWE-120 https://support.lenovo.com/us/en/product_security/LEN-134879 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2023-4028

Vulnerability Summary

References

Vulmon Search

About

Products

Connect