VDB
CVE-2022-32477
CVE-2022-32477
PUBLISHED
In Lenovo Computer existieren mehrere Schwachstellen. Diese sind zurückzuführen auf Fehler im BIOS von verschiedenen Herstellern. Ein lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern oder Informationen offenzulegen.
EPSS 0.07% · 21.4th percentile
Risk Scores
EPSS Score
0.07%
21.4th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Lenovo | Lenovo Computer | |
| HPE | HPE ProLiant | |
| Red Hat | Red Hat Enterprise Linux | |
| SUSE | SUSE Linux |
Timeline
- Feb 14, 2023 CVE Published
- Feb 16, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Mar 28, 2023 EPSS Score
- May 6, 2023 EPSS Score
- May 9, 2023 PoC Published
- May 10, 2023 PoC Published
- May 10, 2023 PoC Published
- May 16, 2023 PoC Published
- May 17, 2023 PoC Published
- Jun 15, 2023 EPSS Score
- Jul 24, 2023 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-0393.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-0393 advisory
- https://access.redhat.com/errata/RHSA-2023:5209 advisory
- https://lists.suse.com/pipermail/sle-security-updates/2023-July/015514.html advisory
- https://support.lenovo.com/us/en/product_security/LEN-107840 advisory
- https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbhf04417en_us advisory