First published: Tue Aug 17 2021(Updated: )
A DLL preloading vulnerability was reported in Lenovo Driver Management prior to version 2.9.0719.1104 that could allow privilege escalation.
Credit: psirt@lenovo.com
Affected Software | Affected Version | How to fix |
---|---|---|
Lenovo Drivers Management | <2.9.0719.1104 |
Update to Lenovo Driver Management version 2.9.0719.1104 (or later).
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2021-3633 is a DLL preloading vulnerability in Lenovo Driver Management that could allow privilege escalation.
The severity of CVE-2021-3633 is high with a CVSS score of 7.8.
Lenovo Driver Management versions up to and including 2.9.0719.1104 are affected by CVE-2021-3633.
Privilege escalation can occur through CVE-2021-3633 due to a DLL preloading vulnerability in Lenovo Driver Management.
Yes, a fix is available for CVE-2021-3633. Users should update to Lenovo Driver Management version 2.9.0719.1105 or later.