CVE-2023-5081

CVSS 3.1 Score 6.0 of 10 (medium)

Details

Published Jan 19, 2024

Updated: Jan 26, 2024

CWE ID 94

Summary

CVE-2023-5081 is an information disclosure vulnerability affecting Lenovo Tab M8 HD devices. This issue permits local applications to obtain a non-resettable device identifier, potentially exposing users' privacy. An attacker could exploit this flaw to track individual devices and link them to specific users, without requiring elevated privileges or user interaction. Lenovo has released a patch to address this vulnerability; users are strongly encouraged to install it to mitigate the risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/tzK1Gm
https://www.cve.org/CVERecord?id=CVE-2023-5081
https://nvd.nist.gov/vuln/detail/CVE-2023-5081

Back to Vulnerability Database

CVE-2023-5081

CVSS 3.1 Score 6.0 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations