cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-33582,https://securityvulnerability.io/vulnerability/CVE-2024-33582,Lenovo Service Framework Vulnerability Allows Local Attacker Execution with Elevated Privileges,"A vulnerability in Lenovo Service Framework has been identified which enables a DLL hijack scenario. This flaw permits a local attacker to execute arbitrary code with elevated privileges, potentially compromising system integrity and security. The risk associated with this vulnerability underscores the importance of implementing security measures and timely software updates. For more detailed information, users and administrators should refer to Lenovo's security advisories and ensure their systems are adequately protected.",Lenovo,Service Framework,7.8,HIGH,0.0004299999854993075,false,,false,false,false,,,false,false,,2024-10-11T15:17:45.232Z,0
CVE-2017-3760,https://securityvulnerability.io/vulnerability/CVE-2017-3760,,The Lenovo Service Framework Android application uses a set of nonsecure credentials when performing integrity verification of downloaded applications and/or data. This exposes the application to man-in-the-middle attacks leading to possible remote code execution.,Lenovo,Service Framework Application,8.1,HIGH,0.0021299999207258224,false,,false,false,false,,,false,false,,2017-10-17T20:29:00.000Z,0
CVE-2017-3758,https://securityvulnerability.io/vulnerability/CVE-2017-3758,,Improper access controls on several Android components in the Lenovo Service Framework application can be exploited to enable remote code execution.,Lenovo,Service Framework Application,9.8,CRITICAL,0.009920000098645687,false,,false,false,false,,,false,false,,2017-10-17T20:29:00.000Z,0
CVE-2017-3759,https://securityvulnerability.io/vulnerability/CVE-2017-3759,,The Lenovo Service Framework Android application accepts some responses from the server without proper validation. This exposes the application to man-in-the-middle attacks leading to possible remote code execution.,Lenovo,Service Framework Application,8.1,HIGH,0.0021299999207258224,false,,false,false,false,,,false,false,,2017-10-17T20:29:00.000Z,0
CVE-2017-3761,https://securityvulnerability.io/vulnerability/CVE-2017-3761,,"The Lenovo Service Framework Android application executes some system commands without proper sanitization of external input. In certain cases, this could lead to command injection which, in turn, could lead to remote code execution.",Lenovo,Service Framework Application,9.8,CRITICAL,0.0037299999967217445,false,,false,false,false,,,false,false,,2017-10-17T20:29:00.000Z,0