CVE-2023-43579

Summary

CVE-2023-43579 is a newly identified buffer overflow vulnerability affecting the SmuV11Dxe driver in certain Lenovo Desktop models. This issue permits a local attacker, who already holds elevated privileges, to inject malicious code into the driver's memory. By successfully exploiting this vulnerability, the attacker can gain unauthorized system control, potentially leading to data theft, unauthorized access, and other malicious activities. Lenovo urges affected users to install the recommended patches as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.