CVE-2022-4568 HIGH

CVE-2022-4568

Vendor Lenovo

Product Lenovo System Update

Weakness CWE-276

Published May 1, 2023

Last update January 30, 2025

CVSS base score

7.0/10

Attack vector Local

Attack complexity High

Privileges required Low

User interaction None

Confidentiality High

Integrity High

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

What the vulnerability does

01Description

A directory permissions management vulnerability in Lenovo System Update may allow elevation of privileges.

Key dates

May 1, 2023 CVE published

January 30, 2025 Record updated

External resources

Related vulnerabilities

CVE CVE-2022-4568

CWE CWE-276

CVSS 7.0 / HIGH

Vendor Lenovo

Product Lenovo System Update

Affected All versions prior to 5.08.01.0005