CVE-2022-3701

HIGH Year: 2022
CVSS v3 Score
7.8
High
Weakness Type
CWE-367
View all →

Vulnerability Description

A privilege elevation vulnerability was reported in the Lenovo Vantage SystemUpdate plugin version 2.0.0.212 and earlier that could allow a local attacker to execute arbitrary code with elevated privileges.

Related Vulnerabilities

CVE-2017-0331

HIGH
CVSS:7.8(High)

An elevation of privilege vulnerability in the NVIDIA video driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critica...

CWE-3672017

CVE-2017-0411

HIGH
CVSS:7.8(High)

An elevation of privilege vulnerability in the Framework APIs could enable a local malicious application to execute arbitrary code within the context of a privileged process. This issue is rated as Hi...

CWE-3672017

CVE-2017-0412

HIGH
CVSS:7.8(High)

An elevation of privilege vulnerability in the Framework APIs could enable a local malicious application to execute arbitrary code within the context of a privileged process. This issue is rated as Hi...

CWE-3672017

CVE-2017-0756

HIGH
CVSS:7.8(High)

A remote code execution vulnerability in the Android media framework (libstagefright). Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-34621073.

CWE-3672017

CVE-2017-15404

HIGH
CVSS:7.8(High)

An ability to process crash dumps under root privileges and inappropriate symlinks handling could lead to a local privilege escalation in Crash Reporting in Google Chrome on Chrome OS prior to 61.0.31...

CWE-3672017

CVE-2018-8584

HIGH
CVSS:7.8(High)

An elevation of privilege vulnerability exists when Windows improperly handles calls to Advanced Local Procedure Call (ALPC), aka "Windows ALPC Elevation of Privilege Vulnerability." This affects Wind...

CWE-3672018