ГлавнаяУязвимости → CVE-2024-26836
7.8высокая

CVE-2024-26836

Описание

In the Linux kernel, the following vulnerability has been resolved: platform/x86: think-lmi: Fix password opcode ordering for workstations The Lenovo workstations require the password opcode to be run before the attribute value is changed (if Admin password is enabled). Tested on some Thinkpads to confirm they are OK with this order too.

Затрагиваемое ПО
Linux Linux kernel
CVSS
Балл7.8 — высокая
ВекторCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://git.kernel.org/stable/c/2bfbe1e0aed00ba51d58573c79452fada3f62ed4https://git.kernel.org/stable/c/2deb10a99671afda30f834e95e5b992a805bba6ahttps://git.kernel.org/stable/c/6f7d0f5fd8e440c3446560100ac4ff9a55eec340https://git.kernel.org/stable/c/2bfbe1e0aed00ba51d58573c79452fada3f62ed4https://git.kernel.org/stable/c/6f7d0f5fd8e440c3446560100ac4ff9a55eec340