1 results (0.003 seconds)
CVSS: 6.7EPSS: 0%CPEs: 2EXPL: 0
CVE-2022-3432
https://notcve.org/view.php?id=CVE-2022-3432
A potential vulnerability in a driver used during manufacturing process on the Ideapad Y700-14ISK that was mistakenly not deactivated may allow an attacker with elevated privileges to modify secure boot setting by modifying an NVRAM variable. Una vulnerabilidad potencial en un controlador utilizado durante el proceso de fabricación en el Ideapad Y700-14ISK que no se desactivó por error puede permitir que un atacante con privilegios elevados modifique la configuración de arranque seguro modificando una variable NVRAM. • https://support.lenovo.com/us/en/product_security/LEN-94952 • CWE-276: Incorrect Default Permissions •