CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-3699

A privilege escalation vulnerability was reported in the Lenovo HardwareScanPlugin prior to version 1.3.1.2 and Lenovo Diagnostics prior to version 4.45 that could allow a local user to execute code with elevated privileges.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.841

EPSS Ranking 99.2%

CVSS Severity

CVSS v3 Score 7.8

References

https://support.lenovo.com/us/en/product_security/LEN-102365
https://support.lenovo.com/us/en/product_security/LEN-94532
https://support.lenovo.com/us/en/product_security/LEN-102365
https://support.lenovo.com/us/en/product_security/LEN-94532

Products affected by CVE-2022-3699

Lenovo » Diagnostics » Version: N/A

cpe:2.3:a:lenovo:diagnostics:-
Lenovo » Diagnostics » Version: 4.35.4

cpe:2.3:a:lenovo:diagnostics:4.35.4
Lenovo » Hardwarescan Addin » Version: N/A

cpe:2.3:a:lenovo:hardwarescan_addin:-
Lenovo » Hardwarescan Plugin » Version: N/A

cpe:2.3:a:lenovo:hardwarescan_plugin:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-3699

Products

Pricing

Contact Us