CVE-2023-47528

CVSS 3.1 Score 4.8 of 10 (medium)

Details

Published Nov 14, 2023

Updated: Nov 20, 2023

CWE ID 79

Summary

CVE-2023-5079 is a vulnerability affecting Lenovo's LeCloud App. Attackers can exploit improper input validation in this application to gain unauthorized access to various components and download arbitrary files. This issue poses a significant risk for information disclosure. Lenovo users are advised to update their LeCloud App to the latest version to mitigate this vulnerability. The vulnerability could potentially allow an attacker to access sensitive data, compromising user privacy and security.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/tSws4_
https://www.cve.org/CVERecord?id=CVE-2023-47528
https://nvd.nist.gov/vuln/detail/CVE-2023-47528

Back to Vulnerability Database

CVE-2023-47528

CVSS 3.1 Score 4.8 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations