CVE-2022-0353
https://notcve.org/view.php?id=CVE-2022-0353
A denial of service vulnerability was reported in the Lenovo HardwareScanPlugin versions prior to 1.3.1.2 and Lenovo Diagnostics versions prior to 4.45 that could allow a local user with administrative access to trigger a system crash. Se informó una vulnerabilidad de Denegación de Servicio (DoS) en las versiones Lenovo HardwareScanPlugin anteriores a 1.3.1.2 y Lenovo Diagnostics anteriores a 4.45 que podría permitir que un usuario local con acceso administrativo desencadene un bloqueo del sistema. • https://support.lenovo.com/us/en/product_security/LEN-102365 https://support.lenovo.com/us/en/product_security/LEN-94532 • CWE-400: Uncontrolled Resource Consumption •
CVE-2022-3699 – Lenovo Diagnostics Driver Memory Access
https://notcve.org/view.php?id=CVE-2022-3699
A privilege escalation vulnerability was reported in the Lenovo HardwareScanPlugin prior to version 1.3.1.2 and Lenovo Diagnostics prior to version 4.45 that could allow a local user to execute code with elevated privileges. Se informó una vulnerabilidad de escalada de privilegios en Lenovo HardwareScanPlugin antes de la versión 1.3.1.2 y Lenovo Diagnostics antes de la versión 4.45 que podría permitir a un usuario local ejecutar código con privilegios elevados. • https://github.com/alfarom256/CVE-2022-3699 https://github.com/Eap2468/CVE-2022-3699 https://support.lenovo.com/us/en/product_security/LEN-102365 https://support.lenovo.com/us/en/product_security/LEN-94532 - • CWE-787: Out-of-bounds Write •