CVE-2021-3633
17.08.2021, 17:15
A DLL preloading vulnerability was reported in Lenovo Driver Management prior to version 2.9.0719.1104 that could allow privilege escalation.Enginsight
| Vendor | Product | Version |
|---|---|---|
| lenovo | drivers_management | 𝑥 < 2.9.0719.1104 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration
- CWE-347 - Improper Verification of Cryptographic SignatureThe software does not verify, or incorrectly verifies, the cryptographic signature for data.
- CWE-427 - Uncontrolled Search Path ElementThe product uses a fixed or controlled search path to find resources, but one or more locations in that path can be under the control of unintended actors.