6.7
CVE-2024-3100
- EPSS 0.1%
- Veröffentlicht 13.09.2024 18:15:04
- Zuletzt bearbeitet 15.04.2026 00:35:42
- Quelle psirt@lenovo.com
- CVE-Watchlists
- Unerledigt
A potential buffer overflow vulnerability was reported in some Lenovo Notebook products that could allow a local attacker with elevated privileges to execute arbitrary code.
Daten sind bereitgestellt durch das CVE Programm von Authorized Data Publishers (ADP) (Unstrukturiert)
Herstellerlenovo
≫
Produkt
ideapad_1-11igl05_firmware
Default Statusunaffected
Version
0
Version <
dwcn31ww
Status
affected
Herstellerlenovo
≫
Produkt
flex_5-14itl05_firmware
Default Statusunaffected
Version
0
Version <
fxcn47ww
Status
affected
Herstellerlenovo
≫
Produkt
100w_gen_3_firmware
Default Statusunaffected
Version
0
Version <
gacn48ww
Status
affected
Herstellerlenovo
≫
Produkt
yoga_slim_7_pro-14ach5_o_firmware
Default Statusunaffected
Version
0
Version <
gzcn36ww
Status
affected
Herstellerlenovo
≫
Produkt
14w_gen_2_firmware
Default Statusunaffected
Version
0
Version <
h0cn29ww
Status
affected
Herstellerlenovo
≫
Produkt
ideapad_5-15alc05_firmware
Default Statusunaffected
Version
0
Version <
h2cn35ww
Status
affected
Herstellerlenovo
≫
Produkt
thinkbook_13s_g4_iap_firmware
Default Statusunaffected
Version
0
Version <
hwcn52ww
Status
affected
Herstellerlenovo
≫
Produkt
thinkbook_13x_g2_iap_firmware
Default Statusunaffected
Version
0
Version <
hxcn57ww
Status
affected
Herstellerlenovo
≫
Produkt
thinkbook_13s_g4_arb_firmware
Default Statusunaffected
Version
0
Version <
hzcx55ww
Status
affected
Herstellerlenovo
≫
Produkt
ideapad_flex_5_16iau7_firmware
Default Statusunaffected
Version
0
Version <
j7cn48ww
Status
affected
Herstellerlenovo
≫
Produkt
13w_yoga_firmware
Default Statusunaffected
Version
0
Version <
jacn41ww
Status
affected
Herstellerlenovo
≫
Produkt
ideapad_flex_5_14alc7_firmware
Default Statusunaffected
Version
0
Version <
jccn40ww
Status
affected
Herstellerlenovo
≫
Produkt
ideapad_1_15alc7_firmware
Default Statusunaffected
Version
0
Version <
jtcn54ww
Status
affected
Herstellerlenovo
≫
Produkt
13w_yoga_gen_2_firmware
Default Statusunaffected
Version
0
Version <
kbcn29ww
Status
affected
Herstellerlenovo
≫
Produkt
ideapad_slim_3_15amn8_firmware
Default Statusunaffected
Version
0
Version <
l1cn41ww
Status
affected
Herstellerlenovo
≫
Produkt
500w_yoga_gen_4_firmware
Default Statusunaffected
Version
0
Version <
l2cn34ww
Status
affected
Version
0
Version <
l3cn34ww
Status
affected
Herstellerlenovo
≫
Produkt
ideapad_flex_5_16iru8_firmware
Default Statusunaffected
Version
0
Version <
l6cn24ww
Status
affected
Herstellerlenovo
≫
Produkt
ideapad_flex_5_16abr8_firmware
Default Statusunaffected
Version
0
Version <
l7cn21ww
Status
affected
Herstellerlenovo
≫
Produkt
k14_g2_iru_firmware
Default Statusunaffected
Version
0
Version <
mmcn36ww
Status
affected
Herstellerlenovo
≫
Produkt
thinkbook_16_g6_abp_firmware
Default Statusunaffected
Version
0
Version <
mncn27ww
Status
affected
Herstellerlenovo
≫
Produkt
v15_g4_abp_firmware
Default Statusunaffected
Version
0
Version <
mscn16ww
Status
affected
Herstellerlenovo
≫
Produkt
ideapad_3-17alc6_firmware
Default Statusunaffected
Version
0
Version <
glcn63ww
Status
affected
Herstellerlenovo
≫
Produkt
ideapad_slim_3_16abr8_firmware
Default Statusunaffected
Version
0
Version <
kycn32ww
Status
affected
Herstellerlenovo
≫
Produkt
ideapad_slim_5_light_14abr8_firmware
Default Statusunaffected
Version
0
Version <
l9cn26ww
Status
affected
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. 
Login
Login| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.1% | 0.287 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| psirt@lenovo.com | 6.7 | 0.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
|
CWE-121 Stack-based Buffer Overflow
A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function).