CVE-2017-3747

MEDIUM

Lenovo Nerve Center - Privilege Escalation

Title source: llm

Description

Privilege escalation vulnerability in Lenovo Nerve Center for Windows 10 on Desktop systems (Lenovo Nerve Center for notebook systems is not affected) that could allow an attacker with local privileges on a system to alter registry keys.

References (2)

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/99286

[Vendor Advisory] https://support.lenovo.com/us/en/product_security/LEN-15046

Scores

CVSS v3 5.5

EPSS 0.0005

EPSS Percentile 16.7%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Details

Status published

Products (2)

lenovo/nerve_center

Lenovo Group Ltd./Lenovo Nerve Center < Earlier than 1.70.0426

Published Jun 29, 2017

Tracked Since Feb 18, 2026