Vulnerability Details : CVE-2017-3747
Privilege escalation vulnerability in Lenovo Nerve Center for Windows 10 on Desktop systems (Lenovo Nerve Center for notebook systems is not affected) that could allow an attacker with local privileges on a system to alter registry keys.
Vulnerability category: Gain privilege
Products affected by CVE-2017-3747
- cpe:2.3:a:lenovo:nerve_center:-:*:*:*:*:*:*:*When used together with: Microsoft » Windows 10
Exploit prediction scoring system (EPSS) score for CVE-2017-3747
0.04%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 6 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2017-3747
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
2.1
|
LOW | AV:L/AC:L/Au:N/C:N/I:P/A:N |
3.9
|
2.9
|
NIST | |
5.5
|
MEDIUM | CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N |
1.8
|
3.6
|
NIST |
References for CVE-2017-3747
-
http://www.securityfocus.com/bid/99286
Lenovo Nerve Center CVE-2017-3747 Local Privilege Escalation VulnerabilityThird Party Advisory;VDB Entry
-
https://support.lenovo.com/us/en/product_security/LEN-15046
Lenovo Nerve Center for Desktops Privilege Escalation - USVendor Advisory
Jump to