CVE-2016-8227

EPSS 0.03%
Veröffentlicht 26.01.2017 17:59:00
Zuletzt bearbeitet 20.04.2025 01:37:25
Quelle psirt@lenovo.com
CVE-Watchlists
Login
Unerledigt
Login

Privilege escalation vulnerability in Lenovo Transition application used in Lenovo Yoga, Flex and Miix systems running Windows allows local users to execute code with elevated privileges.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 5

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Lenovo ≫ Transition Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.03%	0.047

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.8	1.8	5.9	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov	7.2	3.9	10	AV:L/AC:L/Au:N/C:C/I:C/A:C

CWE-284 Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

http://www.securityfocus.com/bid/95159

https://support.lenovo.com/us/en/product_security/LEN-12508

Vendor Advisory

Mitigation

https://nvd.nist.gov/vuln/detail/CVE-2016-8227

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2016-8227

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2016-8227

EUVD