A privilege escalation vulnerability was reported in Lenovo Service Bridge prior to version 5.0.2.17 that could allow operating system commands to be executed if a specially crafted link is visited.
References
Configurations
No configuration.
History
17 Jun 2024, 12:43
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
13 Jun 2024, 20:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-06-13 20:15
Updated : 2024-06-17 12:43
NVD link : CVE-2024-4696
Mitre link : CVE-2024-4696
CVE.ORG link : CVE-2024-4696
JSON object : View
Products Affected
No product.
CWE
CWE-78
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')