Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A local privilege escalation vulnerability in the ThinkPad Hybrid USB-C with USB-A Dock Firmware Update Tool could allow an attacker with local access to execute code with elevated privileges during the package upgrade or installation.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
缺省权限不正确
Vulnerability Title
ThinkPad Hybrid USB-C with USB-A Dock Firmware Update Tool 安全漏洞
Vulnerability Description
Lenovo ThinkPad Hybrid USB-C with USB-A Dock Firmware Update Tool是中国联想(Lenovo)公司的一个固件更新工具。 ThinkPad Hybrid USB-C with USB-A Dock Firmware Update Tool存在安全漏洞,该漏洞源于允许具有本地访问权限的攻击者在软件包升级或安装期间以提升的权限执行代码。
CVSS Information
N/A
Vulnerability Type
N/A