CVE-2017-3747

EUVD-2017-12864
Privilege escalation vulnerability in Lenovo Nerve Center for Windows 10 on Desktop systems (Lenovo Nerve Center for notebook systems is not affected) that could allow an attacker with local privileges on a system to alter registry keys.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.5 MEDIUM
LOCAL
LOW
LOW
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 16%
Affected Products (NVD)
VendorProductVersion
lenovonerve_center
-
𝑥
= Vulnerable software versions
References
http://www.securityfocus.com/bid/99286
https://support.lenovo.com/us/en/product_security/LEN-15046
http://www.securityfocus.com/bid/99286
https://support.lenovo.com/us/en/product_security/LEN-15046