CVE-2023–4632: Local Privilege Escalation in Lenovo System Updater

CVE-2023–4632: Local Privilege Escalation in Lenovo System Updater

| | research, vulnerability
Version: Lenovo Updater Version <= 5.08.01.0009Operating System Tested On: Windows 10 22H2 (x64)Vulnerability: Lenovo System Updater Local Privilege Escalation via Arbitrary File WriteAdvisory: https://support.lenovo.com/us/en/product_security/LEN-135367Vulnerability OverviewThe Lenovo System Update application is designed to allow non-administrators to check for and apply updates to their workstation. During the process of checking for updates, ... Read More