CVE-2023-4028 (GCVE-0-2023-4028)
Vulnerability from cvelistv5
Published
2023-08-17 16:48
Modified
2024-10-08 13:50
Severity ?
EPSS score ?
Summary
A buffer overflow has been identified in the SystemUserMasterHddPwdDxe driver in some Lenovo Notebook products which may allow an attacker with local access and elevated privileges to execute arbitrary code.
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Lenovo | Lenovo Notebook |
Version: various |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T07:17:11.498Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://support.lenovo.com/us/en/product_security/LEN-134879", }, ], title: "CVE Program Container", }, { affected: [ { cpes: [ "cpe:2.3:h:lenovo:ideapad_flex_5_16iau7:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ideapad_flex_5_16iau7", vendor: "lenovo", versions: [ { status: "affected", version: "0", }, ], }, { cpes: [ "cpe:2.3:h:lenovo:ideapad_flex_5_16iru8:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ideapad_flex_5_16iru8", vendor: "lenovo", versions: [ { status: "affected", version: "0", }, ], }, { cpes: [ "cpe:2.3:h:lenovo:13w_yoga:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "13w_yoga", vendor: "lenovo", versions: [ { status: "affected", version: "82s1", }, { status: "affected", version: "82s2", }, ], }, { cpes: [ "cpe:2.3:h:lenovo:13w_yoga_gen_2:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "13w_yoga_gen_2", vendor: "lenovo", versions: [ { status: "affected", version: "82yr", }, { status: "affected", version: "82y2", }, ], }, { cpes: [ "cpe:2.3:h:lenovo:ideapad_5-14alc05:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ideapad_5-14alc05", vendor: "lenovo", versions: [ { status: "affected", version: "0", }, ], }, { cpes: [ "cpe:2.3:h:lenovo:ideapad_5-15alc05:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ideapad_5-15alc05", vendor: "lenovo", versions: [ { status: "affected", version: "0", }, ], }, { cpes: [ "cpe:2.3:h:lenovo:flex_5-14are05:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "flex_5-14are05", vendor: "lenovo", versions: [ { status: "affected", version: "0", }, ], }, { cpes: [ "cpe:2.3:h:lenovo:flex_5-14iil05:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "flex_5-14iil05", vendor: "lenovo", versions: [ { status: "affected", version: "0", }, ], }, { cpes: [ "cpe:2.3:h:lenovo:flex_5-14itl05:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "flex_5-14itl05", vendor: "lenovo", versions: [ { status: "affected", version: "0", }, ], }, { cpes: [ "cpe:2.3:h:lenovo:flex_5-15alc05:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "flex_5-15alc05", vendor: "lenovo", versions: [ { status: "affected", version: "0", }, ], }, { cpes: [ "cpe:2.3:h:lenovo:flex_5-15iil05:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "flex_5-15iil05", vendor: "lenovo", versions: [ { status: "affected", version: "0", }, ], }, { cpes: [ "cpe:2.3:h:lenovo:flex_5-15itl05:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "flex_5-15itl05", vendor: "lenovo", versions: [ { status: "affected", version: "0", }, ], }, { cpes: [ "cpe:2.3:h:lenovo:ideapad_1-11ada05:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ideapad_1-11ada05", vendor: "lenovo", versions: [ { status: "affected", version: "0", }, ], }, { cpes: [ "cpe:2.3:h:lenovo:ideapad_1-11igl05:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ideapad_1-11igl05", vendor: "lenovo", versions: [ { status: "affected", version: "0", }, ], }, { cpes: [ "cpe:2.3:h:lenovo:ideapad_1-14ada05:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ideapad_1-14ada05", vendor: "lenovo", versions: [ { status: "affected", version: "0", }, ], }, { cpes: [ "cpe:2.3:h:lenovo:ideapad_1-14igl05:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ideapad_1-14igl05", vendor: "lenovo", versions: [ { status: "affected", version: "0", }, ], }, { cpes: [ "cpe:2.3:h:lenovo:ideapad_flex_5_14abr8:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ideapad_flex_5_14abr8", vendor: "lenovo", versions: [ { status: "affected", version: "0", }, ], }, { cpes: [ "cpe:2.3:h:lenovo:ideapad_flex_5_14alc7:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ideapad_flex_5_14alc7", vendor: "lenovo", versions: [ { status: "affected", version: "0", }, ], }, { cpes: [ "cpe:2.3:h:lenovo:ideapad_flex_5_14iau7:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ideapad_flex_5_14iau7", vendor: "lenovo", versions: [ { status: "affected", version: "0", }, ], }, { cpes: [ "cpe:2.3:h:lenovo:ideapad_flex_5_14iru8:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ideapad_flex_5_14iru8", vendor: "lenovo", versions: [ { status: "affected", version: "0", }, ], }, { cpes: [ "cpe:2.3:h:lenovo:ideapad_flex_5_16abr8:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ideapad_flex_5_16abr8", vendor: "lenovo", versions: [ { status: "affected", version: "0", }, ], }, { cpes: [ "cpe:2.3:h:lenovo:ideapad_flex_5_16alc7:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ideapad_flex_5_16alc7", vendor: "lenovo", versions: [ { status: "affected", version: "0", }, ], }, { cpes: [ "cpe:2.3:o:lenovo:flex_7_14iau7_firmware:*:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "flex_7_14iau7_firmware", vendor: "lenovo", versions: [ { status: "affected", version: "0", }, ], }, { cpes: [ "cpe:2.3:h:lenovo:flex_7_14iru8:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "flex_7_14iru8", vendor: "lenovo", versions: [ { status: "affected", version: "0", }, ], }, { cpes: [ "cpe:2.3:h:lenovo:thinkbook_13s_g2_are:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkbook_13s_g2_are", vendor: "lenovo", versions: [ { status: "affected", version: "0", }, ], }, { cpes: [ "cpe:2.3:h:lenovo:thinkbook_13s_g2_itl:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkbook_13s_g2_itl", vendor: "lenovo", versions: [ { status: "affected", version: "0", }, ], }, { cpes: [ "cpe:2.3:h:lenovo:thinkbook_13s_g3_acn:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkbook_13s_g3_acn", vendor: "lenovo", versions: [ { status: "affected", version: "0", }, ], }, { cpes: [ "cpe:2.3:h:lenovo:thinkbook_13s_g4_iap:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkbook_13s_g4_iap", vendor: "lenovo", versions: [ { status: "affected", version: "0", }, ], }, { cpes: [ "cpe:2.3:h:lenovo:thinkbook_13x_g2_iap:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkbook_13x_g2_iap", vendor: "lenovo", versions: [ { status: "affected", version: "0", }, ], }, { cpes: [ "cpe:2.3:h:lenovo:thinkbook_14s_g2_itl:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "thinkbook_14s_g2_itl", vendor: "lenovo", versions: [ { status: "affected", version: "0", }, ], }, { cpes: [ "cpe:2.3:h:lenovo:yoga_9-15imh5:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "yoga_9-15imh5", vendor: "lenovo", versions: [ { status: "affected", version: "0", }, ], }, ], metrics: [ { other: { content: { id: "CVE-2023-4028", options: [ { Exploitation: "none", }, { Automatable: "no", }, { "Technical Impact": "total", }, ], role: "CISA Coordinator", timestamp: "2024-10-08T13:16:57.654067Z", version: "2.0.3", }, type: "ssvc", }, }, ], providerMetadata: { dateUpdated: "2024-10-08T13:50:36.650Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, ], cna: { affected: [ { defaultStatus: "unaffected", product: "Lenovo Notebook", vendor: "Lenovo", versions: [ { status: "affected", version: "various", }, ], }, ], credits: [ { lang: "en", type: "finder", user: "00000000-0000-4000-9000-000000000000", value: "Lenovo thanks Zichuan Li (@Ri7erLi) from Indiana University Bloomington for reporting this vulnerability.", }, ], descriptions: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "A buffer overflow has been identified in the SystemUserMasterHddPwdDxe driver in some Lenovo Notebook products which may allow an attacker with local access and elevated privileges to execute arbitrary code.", }, ], value: "A buffer overflow has been identified in the SystemUserMasterHddPwdDxe driver in some Lenovo Notebook products which may allow an attacker with local access and elevated privileges to execute arbitrary code.", }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 6.7, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "HIGH", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, format: "CVSS", scenarios: [ { lang: "en", value: "GENERAL", }, ], }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-120", description: "CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2023-08-17T16:48:06.884Z", orgId: "da227ddf-6e25-4b41-b023-0f976dcaca4b", shortName: "lenovo", }, references: [ { url: "https://support.lenovo.com/us/en/product_security/LEN-134879", }, ], solutions: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "Update system firmware to the version (or newer) indicated for your model in the Product Impact section in LEN-134879.", }, ], value: "Update system firmware to the version (or newer) indicated for your model in the Product Impact section in LEN-134879.", }, ], source: { discovery: "UNKNOWN", }, x_generator: { engine: "Vulnogram 0.1.0-dev", }, }, }, cveMetadata: { assignerOrgId: "da227ddf-6e25-4b41-b023-0f976dcaca4b", assignerShortName: "lenovo", cveId: "CVE-2023-4028", datePublished: "2023-08-17T16:48:06.884Z", dateReserved: "2023-07-31T16:44:11.696Z", dateUpdated: "2024-10-08T13:50:36.650Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", "vulnerability-lookup:meta": { fkie_nvd: { configurations: "[{\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:lenovo:13w_yoga_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"jacn38ww\", \"matchCriteriaId\": \"DF7BF123-9EBB-4CEE-85DC-37301245397C\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:lenovo:13w_yoga:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B0C79699-F690-4A4D-80E5-408CE4A214AA\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:lenovo:13w_yoga_gen_2_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"kbcn20ww\", \"matchCriteriaId\": \"711FF6F4-24F9-47DE-A1CC-1EC5487C6FE5\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:lenovo:13w_yoga_gen_2:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B3AC338E-5E5F-4CCD-86EF-3995BA401703\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:lenovo:ideapad_1-11ada05_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"fqcn29ww\", \"matchCriteriaId\": \"AADF8DBE-D68A-4C58-A531-0CA241A10E46\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:lenovo:ideapad_1-11ada05:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A7C32B51-6F03-4568-BCDF-D59867AC4723\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:lenovo:ideapad_1-11igl05_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"dwcn28ww\", \"matchCriteriaId\": \"0F142589-62C9-4FE3-BE45-92DB86551EBE\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:lenovo:ideapad_1-11igl05:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0AC62EEC-713B-4559-8AB7-0B2B0F4D84F6\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:lenovo:ideapad_1-14ada05_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"fqcn29ww\", \"matchCriteriaId\": \"0AD7471F-965D-4C4F-8F77-B8E1FE182B0F\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:lenovo:ideapad_1-14ada05:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"41F01C73-2B64-47E4-8A04-27426CCCEFE9\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:lenovo:ideapad_1-14igl05_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"dwcn28ww\", \"matchCriteriaId\": \"D9527B25-661A-4F69-9ADF-5465E42FF49F\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:lenovo:ideapad_1-14igl05:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"076B2AA1-ED0B-47B3-B6E2-FFEBB21220AB\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:lenovo:flex_5-14alc05_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"gjcn32ww\", \"matchCriteriaId\": \"A2F821DB-0EB6-477A-BFB2-86B794A2E623\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:lenovo:flex_5-14alc05:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"58A5B398-8997-4023-9555-C9FB301B2053\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:lenovo:flex_5-14are05_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"eecn43ww\", \"matchCriteriaId\": \"A6C77E5D-E758-4FFD-A07A-F1B65B0569D8\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:lenovo:flex_5-14are05:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6307A1E8-45B4-483C-B13D-F6F25F504D21\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:lenovo:flex_5-14iil05_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"eccn45ww\", \"matchCriteriaId\": \"8C192437-50B9-48BC-9665-E55F7B62A9A5\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:lenovo:flex_5-14iil05:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"395BCDC7-B5C3-4FB7-96BD-849572AB50DB\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:lenovo:flex_5-14itl05_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"fxcn44ww\", \"matchCriteriaId\": \"7F3FBB00-C47E-4B60-85F4-8EB10B50A2E3\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:lenovo:flex_5-14itl05:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"941A9478-5A03-46FC-888A-EF75DDCB234A\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:lenovo:flex_5-15alc05_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"gjcn32ww\", \"matchCriteriaId\": \"1D411211-70B6-41B1-99FE-1E6BC6B4B03E\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:lenovo:flex_5-15alc05:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A3779495-A1FA-4589-AADA-C52E56C8B3E7\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:lenovo:flex_5-15iil05_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"eccn45ww\", \"matchCriteriaId\": \"591BC6F7-4E26-4E24-B630-48AB78A3A7F3\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:lenovo:flex_5-15iil05:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7E8D5080-1656-4587-AFEA-C6A438987DAE\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:lenovo:flex_5-15itl05_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"fxcn44ww\", \"matchCriteriaId\": \"4680E2A9-4684-4C7A-8125-D7938C77A3F7\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:lenovo:flex_5-15itl05:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DC0C9D69-BF79-44AA-955B-8EE202B03114\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:lenovo:ideapad_flex_5_14abr8_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"l7cn17ww\", \"matchCriteriaId\": \"F78333EB-CBB7-40B7-A96F-B082A08CAB31\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:lenovo:ideapad_flex_5_14abr8:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8F725EAD-9C36-44E0-826A-5D369881539C\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:lenovo:ideapad_flex_5_14alc7_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"jccn35ww\", \"matchCriteriaId\": \"395914E6-629A-4CE4-80D1-DF9D7482F184\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:lenovo:ideapad_flex_5_14alc7:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CC57D455-CC71-48E0-9A3E-66FAFB562A13\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:lenovo:ideapad_flex_5_14iau7_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"j7cn44ww\", \"matchCriteriaId\": \"F994F689-45A6-4F0D-8725-AEF47AEDA3CB\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:lenovo:ideapad_flex_5_14iau7:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7727853D-2594-418A-8389-4279089C34ED\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:lenovo:ideapad_flex_5_14iru8_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"l6cn20ww\", \"matchCriteriaId\": \"5B4A75D6-2A02-467E-9080-F0EF2C2117B6\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:lenovo:ideapad_flex_5_14iru8:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"829A56C6-D4C8-4A0A-B77B-A63A9050EC46\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:lenovo:ideapad_flex_5_16abr8_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"l7cn17ww\", \"matchCriteriaId\": \"09233791-014F-40AD-8631-44F7D4B63E7B\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:lenovo:ideapad_flex_5_16abr8:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E7F2D28D-9343-40A7-8379-F7269EAFCF07\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:lenovo:ideapad_flex_5_16alc7_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"jccn35ww\", \"matchCriteriaId\": \"147D0422-1667-4102-B0FB-D6936CBB8622\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:lenovo:ideapad_flex_5_16alc7:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2BB069F7-190E-4CD9-9300-CE34E5C94880\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:lenovo:ideapad_flex_5_16iau7_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"j7cn44ww\", \"matchCriteriaId\": \"1B0A754B-7F45-4E18-AE1B-BBC179B5FAC2\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:lenovo:ideapad_flex_5_16iau7:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"10E4E147-6A1D-490B-8DE5-095923A31AE5\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:lenovo:ideapad_flex_5_16iru8_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"l6cn20ww\", \"matchCriteriaId\": \"30CB6C0E-6DCC-4F3A-89AA-24C8B7350112\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:lenovo:ideapad_flex_5_16iru8:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5DEC6EDF-B1C2-40AB-AD03-3E8422A4DAC4\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:lenovo:flex_7_14iru8_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"l6cn20ww\", \"matchCriteriaId\": \"5E62C036-B9CB-46B6-A518-5D989791343C\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:lenovo:flex_7_14iru8:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0ABEFEF0-03CC-48EA-84F8-608344B826E8\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:lenovo:thinkbook_13s_g2_are_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"fvcn28ww\", \"matchCriteriaId\": \"C957B5AB-B74C-4330-88EE-10379146E2E8\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:lenovo:thinkbook_13s_g2_are:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CF07F8EA-8901-49AD-B001-D2FA4C2347F4\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:lenovo:thinkbook_13s_g2_itl_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"f9cn57ww\", \"matchCriteriaId\": \"56E26764-6660-4E85-A1B6-4A2CA4850DCD\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:lenovo:thinkbook_13s_g2_itl:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"402E5B1C-7786-4102-9844-6FFB9D810204\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:lenovo:thinkbook_13s_g3_acn_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"gmcn35ww\", \"matchCriteriaId\": \"DC16E24A-948B-4027-93DE-A90306A7D98A\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:lenovo:thinkbook_13s_g3_acn:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F8F67521-7E7E-4B90-886B-EE54B8D1A5D6\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:lenovo:thinkbook_13s_g4_iap_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"hwcn49ww\", \"matchCriteriaId\": \"D700597B-1DBB-446A-95B3-086BEBAD12EC\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:lenovo:thinkbook_13s_g4_iap:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7A20DC2B-4B76-47C3-B0AC-77FC7F49305C\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:lenovo:thinkbook_13x_g2_iap_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"hxcn54ww\", \"matchCriteriaId\": \"A6DFAC97-DB42-44AE-8FC6-45F06B6FA64A\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:lenovo:thinkbook_13x_g2_iap:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"51285D29-591D-471B-B63B-18C19B5B82DD\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:lenovo:thinkbook_14s_g2_itl_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"f9cn57ww\", \"matchCriteriaId\": \"FBBCC13F-4D16-4768-AAB5-EE2F061610DF\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:lenovo:thinkbook_14s_g2_itl:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"463EB277-DEF6-4FE3-A07D-6F373C040EFE\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:lenovo:yoga_9-15imh5_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"epcn32ww\", \"matchCriteriaId\": \"5488AD2D-DB5E-4205-8124-5F1BEE20BBE6\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:lenovo:yoga_9-15imh5:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"351885D4-6E5E-4224-A967-68E6338FBA23\"}]}]}]", descriptions: "[{\"lang\": \"en\", \"value\": \"A buffer overflow has been identified in the SystemUserMasterHddPwdDxe driver in some Lenovo Notebook products which may allow an attacker with local access and elevated privileges to execute arbitrary code.\"}, {\"lang\": \"es\", \"value\": \"Se ha identificado un desbordamiento de b\\u00fafer en el controlador SystemUserMasterHddPwdDxe de algunos productos port\\u00e1tiles de Lenovo que puede permitir a un atacante con acceso local y privilegios elevados ejecutar c\\u00f3digo arbitrario.\"}]", id: "CVE-2023-4028", lastModified: "2024-11-21T08:34:15.500", metrics: "{\"cvssMetricV31\": [{\"source\": \"psirt@lenovo.com\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H\", \"baseScore\": 6.7, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"HIGH\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 0.8, \"impactScore\": 5.9}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H\", \"baseScore\": 6.7, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"HIGH\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 0.8, \"impactScore\": 5.9}]}", published: "2023-08-17T17:15:10.217", references: "[{\"url\": \"https://support.lenovo.com/us/en/product_security/LEN-134879\", \"source\": \"psirt@lenovo.com\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://support.lenovo.com/us/en/product_security/LEN-134879\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}]", sourceIdentifier: "psirt@lenovo.com", vulnStatus: "Modified", weaknesses: "[{\"source\": \"psirt@lenovo.com\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-120\"}]}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-120\"}]}]", }, nvd: "{\"cve\":{\"id\":\"CVE-2023-4028\",\"sourceIdentifier\":\"psirt@lenovo.com\",\"published\":\"2023-08-17T17:15:10.217\",\"lastModified\":\"2024-11-21T08:34:15.500\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A buffer overflow has been identified in the SystemUserMasterHddPwdDxe driver in some Lenovo Notebook products which may allow an attacker with local access and elevated privileges to execute arbitrary code.\"},{\"lang\":\"es\",\"value\":\"Se ha identificado un desbordamiento de búfer en el controlador SystemUserMasterHddPwdDxe de algunos productos portátiles de Lenovo que puede permitir a un atacante con acceso local y privilegios elevados ejecutar código arbitrario.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"psirt@lenovo.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":6.7,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"HIGH\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":0.8,\"impactScore\":5.9},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":6.7,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"HIGH\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":0.8,\"impactScore\":5.9}]},\"weaknesses\":[{\"source\":\"psirt@lenovo.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-120\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-120\"}]}],\"configurations\":[{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:lenovo:13w_yoga_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"jacn38ww\",\"matchCriteriaId\":\"DF7BF123-9EBB-4CEE-85DC-37301245397C\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:13w_yoga:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B0C79699-F690-4A4D-80E5-408CE4A214AA\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:lenovo:13w_yoga_gen_2_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"kbcn20ww\",\"matchCriteriaId\":\"711FF6F4-24F9-47DE-A1CC-1EC5487C6FE5\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:13w_yoga_gen_2:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B3AC338E-5E5F-4CCD-86EF-3995BA401703\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:lenovo:ideapad_1-11ada05_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"fqcn29ww\",\"matchCriteriaId\":\"AADF8DBE-D68A-4C58-A531-0CA241A10E46\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:ideapad_1-11ada05:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A7C32B51-6F03-4568-BCDF-D59867AC4723\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:lenovo:ideapad_1-11igl05_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"dwcn28ww\",\"matchCriteriaId\":\"0F142589-62C9-4FE3-BE45-92DB86551EBE\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:ideapad_1-11igl05:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0AC62EEC-713B-4559-8AB7-0B2B0F4D84F6\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:lenovo:ideapad_1-14ada05_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"fqcn29ww\",\"matchCriteriaId\":\"0AD7471F-965D-4C4F-8F77-B8E1FE182B0F\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:ideapad_1-14ada05:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"41F01C73-2B64-47E4-8A04-27426CCCEFE9\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:lenovo:ideapad_1-14igl05_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"dwcn28ww\",\"matchCriteriaId\":\"D9527B25-661A-4F69-9ADF-5465E42FF49F\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:ideapad_1-14igl05:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"076B2AA1-ED0B-47B3-B6E2-FFEBB21220AB\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:lenovo:flex_5-14alc05_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"gjcn32ww\",\"matchCriteriaId\":\"A2F821DB-0EB6-477A-BFB2-86B794A2E623\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:flex_5-14alc05:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"58A5B398-8997-4023-9555-C9FB301B2053\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:lenovo:flex_5-14are05_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"eecn43ww\",\"matchCriteriaId\":\"A6C77E5D-E758-4FFD-A07A-F1B65B0569D8\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:flex_5-14are05:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6307A1E8-45B4-483C-B13D-F6F25F504D21\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:lenovo:flex_5-14iil05_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"eccn45ww\",\"matchCriteriaId\":\"8C192437-50B9-48BC-9665-E55F7B62A9A5\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:flex_5-14iil05:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"395BCDC7-B5C3-4FB7-96BD-849572AB50DB\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:lenovo:flex_5-14itl05_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"fxcn44ww\",\"matchCriteriaId\":\"7F3FBB00-C47E-4B60-85F4-8EB10B50A2E3\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:flex_5-14itl05:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"941A9478-5A03-46FC-888A-EF75DDCB234A\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:lenovo:flex_5-15alc05_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"gjcn32ww\",\"matchCriteriaId\":\"1D411211-70B6-41B1-99FE-1E6BC6B4B03E\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:flex_5-15alc05:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A3779495-A1FA-4589-AADA-C52E56C8B3E7\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:lenovo:flex_5-15iil05_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"eccn45ww\",\"matchCriteriaId\":\"591BC6F7-4E26-4E24-B630-48AB78A3A7F3\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:flex_5-15iil05:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7E8D5080-1656-4587-AFEA-C6A438987DAE\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:lenovo:flex_5-15itl05_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"fxcn44ww\",\"matchCriteriaId\":\"4680E2A9-4684-4C7A-8125-D7938C77A3F7\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:flex_5-15itl05:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DC0C9D69-BF79-44AA-955B-8EE202B03114\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:lenovo:ideapad_flex_5_14abr8_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"l7cn17ww\",\"matchCriteriaId\":\"F78333EB-CBB7-40B7-A96F-B082A08CAB31\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:ideapad_flex_5_14abr8:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8F725EAD-9C36-44E0-826A-5D369881539C\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:lenovo:ideapad_flex_5_14alc7_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"jccn35ww\",\"matchCriteriaId\":\"395914E6-629A-4CE4-80D1-DF9D7482F184\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:ideapad_flex_5_14alc7:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CC57D455-CC71-48E0-9A3E-66FAFB562A13\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:lenovo:ideapad_flex_5_14iau7_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"j7cn44ww\",\"matchCriteriaId\":\"F994F689-45A6-4F0D-8725-AEF47AEDA3CB\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:ideapad_flex_5_14iau7:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7727853D-2594-418A-8389-4279089C34ED\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:lenovo:ideapad_flex_5_14iru8_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"l6cn20ww\",\"matchCriteriaId\":\"5B4A75D6-2A02-467E-9080-F0EF2C2117B6\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:ideapad_flex_5_14iru8:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"829A56C6-D4C8-4A0A-B77B-A63A9050EC46\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:lenovo:ideapad_flex_5_16abr8_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"l7cn17ww\",\"matchCriteriaId\":\"09233791-014F-40AD-8631-44F7D4B63E7B\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:ideapad_flex_5_16abr8:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E7F2D28D-9343-40A7-8379-F7269EAFCF07\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:lenovo:ideapad_flex_5_16alc7_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"jccn35ww\",\"matchCriteriaId\":\"147D0422-1667-4102-B0FB-D6936CBB8622\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:ideapad_flex_5_16alc7:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2BB069F7-190E-4CD9-9300-CE34E5C94880\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:lenovo:ideapad_flex_5_16iau7_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"j7cn44ww\",\"matchCriteriaId\":\"1B0A754B-7F45-4E18-AE1B-BBC179B5FAC2\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:ideapad_flex_5_16iau7:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"10E4E147-6A1D-490B-8DE5-095923A31AE5\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:lenovo:ideapad_flex_5_16iru8_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"l6cn20ww\",\"matchCriteriaId\":\"30CB6C0E-6DCC-4F3A-89AA-24C8B7350112\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:ideapad_flex_5_16iru8:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5DEC6EDF-B1C2-40AB-AD03-3E8422A4DAC4\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:lenovo:flex_7_14iru8_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"l6cn20ww\",\"matchCriteriaId\":\"5E62C036-B9CB-46B6-A518-5D989791343C\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:flex_7_14iru8:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0ABEFEF0-03CC-48EA-84F8-608344B826E8\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:lenovo:thinkbook_13s_g2_are_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"fvcn28ww\",\"matchCriteriaId\":\"C957B5AB-B74C-4330-88EE-10379146E2E8\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:thinkbook_13s_g2_are:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CF07F8EA-8901-49AD-B001-D2FA4C2347F4\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:lenovo:thinkbook_13s_g2_itl_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"f9cn57ww\",\"matchCriteriaId\":\"56E26764-6660-4E85-A1B6-4A2CA4850DCD\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:thinkbook_13s_g2_itl:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"402E5B1C-7786-4102-9844-6FFB9D810204\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:lenovo:thinkbook_13s_g3_acn_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"gmcn35ww\",\"matchCriteriaId\":\"DC16E24A-948B-4027-93DE-A90306A7D98A\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:thinkbook_13s_g3_acn:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F8F67521-7E7E-4B90-886B-EE54B8D1A5D6\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:lenovo:thinkbook_13s_g4_iap_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"hwcn49ww\",\"matchCriteriaId\":\"D700597B-1DBB-446A-95B3-086BEBAD12EC\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:thinkbook_13s_g4_iap:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7A20DC2B-4B76-47C3-B0AC-77FC7F49305C\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:lenovo:thinkbook_13x_g2_iap_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"hxcn54ww\",\"matchCriteriaId\":\"A6DFAC97-DB42-44AE-8FC6-45F06B6FA64A\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:thinkbook_13x_g2_iap:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"51285D29-591D-471B-B63B-18C19B5B82DD\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:lenovo:thinkbook_14s_g2_itl_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"f9cn57ww\",\"matchCriteriaId\":\"FBBCC13F-4D16-4768-AAB5-EE2F061610DF\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:thinkbook_14s_g2_itl:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"463EB277-DEF6-4FE3-A07D-6F373C040EFE\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:lenovo:yoga_9-15imh5_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"epcn32ww\",\"matchCriteriaId\":\"5488AD2D-DB5E-4205-8124-5F1BEE20BBE6\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:yoga_9-15imh5:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"351885D4-6E5E-4224-A967-68E6338FBA23\"}]}]}],\"references\":[{\"url\":\"https://support.lenovo.com/us/en/product_security/LEN-134879\",\"source\":\"psirt@lenovo.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://support.lenovo.com/us/en/product_security/LEN-134879\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]}]}}", vulnrichment: { containers: "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://support.lenovo.com/us/en/product_security/LEN-134879\", \"tags\": [\"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-02T07:17:11.498Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2023-4028\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-10-08T13:16:57.654067Z\"}}}], \"affected\": [{\"cpes\": [\"cpe:2.3:h:lenovo:ideapad_flex_5_16iau7:-:*:*:*:*:*:*:*\"], \"vendor\": \"lenovo\", \"product\": \"ideapad_flex_5_16iau7\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:lenovo:ideapad_flex_5_16iru8:-:*:*:*:*:*:*:*\"], \"vendor\": \"lenovo\", \"product\": \"ideapad_flex_5_16iru8\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:lenovo:13w_yoga:-:*:*:*:*:*:*:*\"], \"vendor\": \"lenovo\", \"product\": \"13w_yoga\", \"versions\": [{\"status\": \"affected\", \"version\": \"82s1\"}, {\"status\": \"affected\", \"version\": \"82s2\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:lenovo:13w_yoga_gen_2:-:*:*:*:*:*:*:*\"], \"vendor\": \"lenovo\", \"product\": \"13w_yoga_gen_2\", \"versions\": [{\"status\": \"affected\", \"version\": \"82yr\"}, {\"status\": \"affected\", \"version\": \"82y2\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:lenovo:ideapad_5-14alc05:-:*:*:*:*:*:*:*\"], \"vendor\": \"lenovo\", \"product\": \"ideapad_5-14alc05\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:lenovo:ideapad_5-15alc05:-:*:*:*:*:*:*:*\"], \"vendor\": \"lenovo\", \"product\": \"ideapad_5-15alc05\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:lenovo:flex_5-14are05:-:*:*:*:*:*:*:*\"], \"vendor\": \"lenovo\", \"product\": \"flex_5-14are05\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:lenovo:flex_5-14iil05:-:*:*:*:*:*:*:*\"], \"vendor\": \"lenovo\", \"product\": \"flex_5-14iil05\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:lenovo:flex_5-14itl05:-:*:*:*:*:*:*:*\"], \"vendor\": \"lenovo\", \"product\": \"flex_5-14itl05\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:lenovo:flex_5-15alc05:-:*:*:*:*:*:*:*\"], \"vendor\": \"lenovo\", \"product\": \"flex_5-15alc05\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:lenovo:flex_5-15iil05:-:*:*:*:*:*:*:*\"], \"vendor\": \"lenovo\", \"product\": \"flex_5-15iil05\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:lenovo:flex_5-15itl05:-:*:*:*:*:*:*:*\"], \"vendor\": \"lenovo\", \"product\": \"flex_5-15itl05\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:lenovo:ideapad_1-11ada05:-:*:*:*:*:*:*:*\"], \"vendor\": \"lenovo\", \"product\": \"ideapad_1-11ada05\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:lenovo:ideapad_1-11igl05:-:*:*:*:*:*:*:*\"], \"vendor\": \"lenovo\", \"product\": \"ideapad_1-11igl05\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:lenovo:ideapad_1-14ada05:-:*:*:*:*:*:*:*\"], \"vendor\": \"lenovo\", \"product\": \"ideapad_1-14ada05\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:lenovo:ideapad_1-14igl05:-:*:*:*:*:*:*:*\"], \"vendor\": \"lenovo\", \"product\": \"ideapad_1-14igl05\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:lenovo:ideapad_flex_5_14abr8:-:*:*:*:*:*:*:*\"], \"vendor\": \"lenovo\", \"product\": \"ideapad_flex_5_14abr8\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:lenovo:ideapad_flex_5_14alc7:-:*:*:*:*:*:*:*\"], \"vendor\": \"lenovo\", \"product\": \"ideapad_flex_5_14alc7\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:lenovo:ideapad_flex_5_14iau7:-:*:*:*:*:*:*:*\"], \"vendor\": \"lenovo\", \"product\": \"ideapad_flex_5_14iau7\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:lenovo:ideapad_flex_5_14iru8:-:*:*:*:*:*:*:*\"], \"vendor\": \"lenovo\", \"product\": \"ideapad_flex_5_14iru8\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:lenovo:ideapad_flex_5_16abr8:-:*:*:*:*:*:*:*\"], \"vendor\": \"lenovo\", \"product\": \"ideapad_flex_5_16abr8\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:lenovo:ideapad_flex_5_16alc7:-:*:*:*:*:*:*:*\"], \"vendor\": \"lenovo\", \"product\": \"ideapad_flex_5_16alc7\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:o:lenovo:flex_7_14iau7_firmware:*:*:*:*:*:*:*:*\"], \"vendor\": \"lenovo\", \"product\": \"flex_7_14iau7_firmware\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:lenovo:flex_7_14iru8:-:*:*:*:*:*:*:*\"], \"vendor\": \"lenovo\", \"product\": \"flex_7_14iru8\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:lenovo:thinkbook_13s_g2_are:-:*:*:*:*:*:*:*\"], \"vendor\": \"lenovo\", \"product\": \"thinkbook_13s_g2_are\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:lenovo:thinkbook_13s_g2_itl:-:*:*:*:*:*:*:*\"], \"vendor\": \"lenovo\", \"product\": \"thinkbook_13s_g2_itl\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:lenovo:thinkbook_13s_g3_acn:-:*:*:*:*:*:*:*\"], \"vendor\": \"lenovo\", \"product\": \"thinkbook_13s_g3_acn\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:lenovo:thinkbook_13s_g4_iap:-:*:*:*:*:*:*:*\"], \"vendor\": \"lenovo\", \"product\": \"thinkbook_13s_g4_iap\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:lenovo:thinkbook_13x_g2_iap:-:*:*:*:*:*:*:*\"], \"vendor\": \"lenovo\", \"product\": \"thinkbook_13x_g2_iap\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:lenovo:thinkbook_14s_g2_itl:-:*:*:*:*:*:*:*\"], \"vendor\": \"lenovo\", \"product\": \"thinkbook_14s_g2_itl\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:h:lenovo:yoga_9-15imh5:-:*:*:*:*:*:*:*\"], \"vendor\": \"lenovo\", \"product\": \"yoga_9-15imh5\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\"}], \"defaultStatus\": \"unknown\"}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-10-08T13:37:37.127Z\"}}], \"cna\": {\"source\": {\"discovery\": \"UNKNOWN\"}, \"credits\": [{\"lang\": \"en\", \"type\": \"finder\", \"user\": \"00000000-0000-4000-9000-000000000000\", \"value\": \"Lenovo thanks Zichuan Li (@Ri7erLi) from Indiana University Bloomington for reporting this vulnerability.\"}], \"metrics\": [{\"format\": \"CVSS\", \"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 6.7, \"attackVector\": \"LOCAL\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"HIGH\", \"confidentialityImpact\": \"HIGH\"}, \"scenarios\": [{\"lang\": \"en\", \"value\": \"GENERAL\"}]}], \"affected\": [{\"vendor\": \"Lenovo\", \"product\": \"Lenovo Notebook\", \"versions\": [{\"status\": \"affected\", \"version\": \"various\"}], \"defaultStatus\": \"unaffected\"}], \"solutions\": [{\"lang\": \"en\", \"value\": \"Update system firmware to the version (or newer) indicated for your model in the Product Impact section in LEN-134879.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"Update system firmware to the version (or newer) indicated for your model in the Product Impact section in LEN-134879.\", \"base64\": false}]}], \"references\": [{\"url\": \"https://support.lenovo.com/us/en/product_security/LEN-134879\"}], \"x_generator\": {\"engine\": \"Vulnogram 0.1.0-dev\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"A buffer overflow has been identified in the SystemUserMasterHddPwdDxe driver in some Lenovo Notebook products which may allow an attacker with local access and elevated privileges to execute arbitrary code.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"A buffer overflow has been identified in the SystemUserMasterHddPwdDxe driver in some Lenovo Notebook products which may allow an attacker with local access and elevated privileges to execute arbitrary code.\", \"base64\": false}]}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-120\", \"description\": \"CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')\"}]}], \"providerMetadata\": {\"orgId\": \"da227ddf-6e25-4b41-b023-0f976dcaca4b\", \"shortName\": \"lenovo\", \"dateUpdated\": \"2023-08-17T16:48:06.884Z\"}}}", cveMetadata: "{\"cveId\": \"CVE-2023-4028\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2024-10-08T13:50:36.650Z\", \"dateReserved\": \"2023-07-31T16:44:11.696Z\", \"assignerOrgId\": \"da227ddf-6e25-4b41-b023-0f976dcaca4b\", \"datePublished\": \"2023-08-17T16:48:06.884Z\", \"assignerShortName\": \"lenovo\"}", dataType: "CVE_RECORD", dataVersion: "5.1", }, }, }
Log in or create an account to share your comment.
Security Advisory comment format.
This schema specifies the format of a comment related to a security advisory.
Title of the comment
Description of the comment
Loading…
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.