CVE-2022-3698

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Oct 25, 2023

Updated: Oct 30, 2023

CWE ID 22

Summary

CVE-2022-3698 is a denial-of-service vulnerability affecting Lenovo HardwareScanPlugin versions below 1.3.1.2 and Lenovo Diagnostics versions below 4.45. A local user with administrative access can exploit this issue to trigger a system crash. This vulnerability poses a risk to Lenovo users, particularly those with outdated software, and could lead to significant downtime and productivity loss. Users are advised to upgrade their software to the latest versions to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Ivanti Avalanche

Affected Vendors

Ivanti Software Inc.

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/nbWmBp
https://www.cve.org/CVERecord?id=CVE-2022-3698
https://nvd.nist.gov/vuln/detail/CVE-2022-3698

Back to Vulnerability Database