CVE-2016-8231 in Service Bridgeinfo

Summary

In Lenovo Service Bridge before version 4, a bug found in the signature verification logic of the code signing certificate could be exploited by an attacker to insert a forged code signing certificate.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservation

09/16/2016

Disclosure

06/04/2017

Moderation

VulDB entry created

Entries

VDB-101935 (1)

CPE

ready

CWE

CWE-295 (Confirmed)

CVSS

6.5

EPSS

0.00105

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-8231
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-8231
CVE Details	https://www.cvedetails.com/cve/CVE-2016-8231/

◂ Previous Overview Next ▸

Do you need the next level of professionalism?

Upgrade your account now!