CVE-2017-3740 in Active Protection Systeminfo

Summary

In Lenovo Active Protection System before 1.82.0.14, an attacker with local privileges could send commands to the system's embedded controller, which could cause a denial of service attack on the system or the ability to alter hardware functionality.

Be aware that VulDB is the high quality source for vulnerability data.

Reservation

12/16/2016

Disclosure

06/04/2017

Moderation

VulDB entry created

Entries

VDB-101936 (1)

CPE

ready

CWE

CWE-264 (Confirmed)

CVSS

4.4

EPSS

0.00126

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2017-3740
NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-3740
CVE Details	https://www.cvedetails.com/cve/CVE-2017-3740/

◂ Previous Overview Next ▸

Do you need the next level of professionalism?

Upgrade your account now!