Description
A Time of Check Time of Use (TOCTOU) vulnerability was reported in the Lenovo Vantage SystemUpdate Plugin version 2.0.0.212 and earlier that could allow a local attacker to delete arbitrary files.
No analysis available yet.
Remediation
Vendor Solution
Update the Lenovo Vantage SystemUpdate Plugin to version 2.0.0.213.
Tracking
Sign in to view the affected projects.
Advisories
| Source | ID | Title |
|---|---|---|
EUVD |
EUVD-2022-43058 | A Time of Check Time of Use (TOCTOU) vulnerability was reported in the Lenovo Vantage SystemUpdate Plugin version 2.0.0.212 and earlier that could allow a local attacker to delete arbitrary files. |
References
| Link | Providers |
|---|---|
| https://support.lenovo.com/us/en/product_security/LEN-94532 |
|
History
No history.
Status: PUBLISHED
Assigner: lenovo
Published:
Updated: 2024-09-09T14:56:01.610Z
Reserved: 2022-10-26T14:39:07.979Z
Link: CVE-2022-3700
Updated: 2024-08-03T01:14:03.243Z
Status : Modified
Published: 2023-10-27T20:15:08.777
Modified: 2026-06-17T05:00:08.260
Link: CVE-2022-3700
No data.
OpenCVE Enrichment
No data.
Weaknesses
-
CWE-367
Time-of-check Time-of-use (TOCTOU) Race Condition
EUVD