CVE-2023-5079

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Nov 8, 2023
Updated: Nov 22, 2023
CWE ID 20

Summary

CVE-2023-5079 is a cyber vulnerability that affects the Lenovo LeCloud App. This vulnerability allows attackers to access arbitrary components and download arbitrary files, potentially leading to information disclosure. The risk score for this vulnerability is 25, indicating a high level of severity. The base severity score is 7.5, with a confidentiality impact of high. However, no privileges are required and there is no user interaction needed for exploitation. The attack vector is through the network with a low attack complexity. It is important for organizations using the Lenovo LeCloud App to remediate this vulnerability promptly to prevent potential data breaches or unauthorized access to sensitive information.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share