A buffer over-read was reported in the LEMALLDriversConnectedEventHook module in some Lenovo Desktop products that may allow a local attacker with elevated privileges

to disclose sensitive information.

Fixes

Solution

Update system firmware to the version (or newer) indicated for your model in the advisory:  https://support.lenovo.com/us/en/product_security/LEN-141775


Workaround

No workaround given by the vendor.

History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: lenovo

Published:

Updated: 2024-09-03T20:34:05.696Z

Reserved: 2023-09-19T19:57:40.661Z

Link: CVE-2023-43574

cve-icon Vulnrichment

Updated: 2024-08-02T19:44:43.824Z

cve-icon NVD

Status : Modified

Published: 2023-11-08T23:15:09.250

Modified: 2024-11-21T08:24:24.123

Link: CVE-2023-43574

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.