Vulnerabilities > CVE-2023-43568 - Buffer Over-read vulnerability in Lenovo products

047910
CVSS 4.4 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
HIGH
Confidentiality impact
HIGH
Integrity impact
NONE
Availability impact
NONE
local
low complexity
lenovo
CWE-126

Summary

A buffer over-read was reported in the LemSecureBootForceKey module in some Lenovo Desktop products that may allow a local attacker with elevated privileges to disclose sensitive information.

Vulnerable Configurations

Part Description Count
OS
Lenovo
203
Hardware
Lenovo
111

Common Weakness Enumeration (CWE)