1. Home
  2. CVE Database
  3. CVE-2017-3756
HIGH · 7.8

CVE-2017-3756

A privilege escalation vulnerability was identified in Lenovo Active Protection System for ThinkPad systems versions earlier than 1.82.0.17. An attacker with local privileges could execute code with a...

Vulnerability Description

A privilege escalation vulnerability was identified in Lenovo Active Protection System for ThinkPad systems versions earlier than 1.82.0.17. An attacker with local privileges could execute code with administrative privileges via an unquoted service path.

CVSS Score

7.8

HIGH

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
HIGH
Availability
HIGH

Affected Products

VendorProductVersions
LenovoThinkpad 10 Ella 2 Bios-
LenovoThinkpad 11E Beema Bios-
LenovoThinkpad 11E Braswell Bios-
LenovoThinkpad 11E Broadwell Bios-
LenovoThinkpad 11E Skylake Bios-
LenovoThinkpad 13E Bios-
LenovoThinkpad E450 Bios-
LenovoThinkpad E450C Bios-
LenovoThinkpad E455 Bios-
LenovoThinkpad E460 Bios-
LenovoThinkpad E465 Bios-
LenovoThinkpad E550 Bios-
LenovoThinkpad E550C Bios-
LenovoThinkpad E555 Bios-
LenovoThinkpad E560 Bios-
LenovoThinkpad E565 Bios-
LenovoThinkpad Edge E440 Bios-
LenovoThinkpad Edge E445 Bios-
LenovoThinkpad Edge E540 Bios-
LenovoThinkpad Edge E545 Bios-

References

FAQ

What is CVE-2017-3756?

CVE-2017-3756 is a vulnerability with a CVSS score of 7.8 (HIGH). A privilege escalation vulnerability was identified in Lenovo Active Protection System for ThinkPad systems versions earlier than 1.82.0.17. An attacker with local privileges could execute code with a...

How severe is CVE-2017-3756?

CVE-2017-3756 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2017-3756?

Check the references section above for vendor advisories and patch information. Affected products include: Lenovo Thinkpad 10 Ella 2 Bios, Lenovo Thinkpad 11E Beema Bios, Lenovo Thinkpad 11E Braswell Bios, Lenovo Thinkpad 11E Broadwell Bios, Lenovo Thinkpad 11E Skylake Bios.